base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
185.178.208.73301 Moved Permanently 113 B URL HTTP/1.1 base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
IP 185.178.208.73:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a538151abf3c20704faeaee365321629
461344deb2bce5e25cf9c7d6d95457440acd8b64
ab42be95b09a817c90cac87b497f4bbda67ee18770e38ac85ac0fa55b9bf5136
GET /10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/ HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=1DKRRmSmE2x3k6aAEkbP; Domain=.garant.ru; HttpOnly; Path=/; Expires=Sat, 03-Feb-2024 15:59:06 GMT
Date: Fri, 03 Feb 2023 15:59:06 GMT
Content-Type: text/html
Location: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
X-Request-ID: fa38335d8ca1f5a8d74d171b899aa72f
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5096
Expires: Fri, 03 Feb 2023 17:24:03 GMT
Date: Fri, 03 Feb 2023 15:59:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4468
Expires: Fri, 03 Feb 2023 17:13:35 GMT
Date: Fri, 03 Feb 2023 15:59:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 15:43:35 GMT
content-type: application/json
age: 932
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5446
Expires: Fri, 03 Feb 2023 17:29:53 GMT
Date: Fri, 03 Feb 2023 15:59:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Yt5hgbHGuSE33XcG+enyKY3lssxfAiyEayx2VAwtcfbQJDD/+GiO4+Id6eq9ygQMj/XIdEvW86/deuGFabhUYA==
x-amz-request-id: 3GGVHNCJ3PV13ZH1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 15:52:28 GMT
age: 399
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/alphasslcasha256g4
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.21.226:0
Hash 6dec4193426da94e77b31cc5a730187d
661e800cef36aae1ecf596e8ee434bd7de2eb67d
fd9326b1f6ed80d3821c122ae48092ee8427c79a9f340e3b846784667cf3bef2
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:44:04 GMT
ETag: "661e800cef36aae1ecf596e8ee434bd7de2eb67d"
Last-Modified: Fri, 03 Feb 2023 14:44:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 9
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f36ec3fb4ed-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:07 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
base.garant.ru/images/js/jquery-1.8.3.min.js
185.178.208.73200 OK 34 kB URL HTTP/2 base.garant.ru/images/js/jquery-1.8.3.min.js
IP 185.178.208.73:0
File type ASCII text, with very long lines (65483)
Hash f356e92eb3a5ef220961e2fb7adbf04b
5b7b1ce36dc9f7eae42df5ef587fbbcd0bdc6dd7
c0983c3c6fc237225b611b317d5302563e23b86eec0610a30bdb30478491ba94
GET /images/js/jquery-1.8.3.min.js HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 04:44:22 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 20 Jun 2016 14:22:24 GMT
cache-control: max-age=604800
content-encoding: gzip
content-length: 33772
ddg-cache-status: HIT,HIT
vary: Accept-Encoding
etag: "5767fc20-16dc4"
expires: Wed, 08 Feb 2023 13:38:31 GMT
age: 40485
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/normalize.css?729
185.178.208.73200 OK 2.6 kB URL HTTP/2 base.garant.ru/static/base/css/normalize.css?729
IP 185.178.208.73:0
File type ASCII text, with CRLF line terminators
Hash 6a6fda53729b8e226ff919c8ab21588d
11f74817768bd4e6f91b5097b636b74d26074b35
9e279b7c9dd292e99e57a1013832207fd41da91e60b074f1ff39724c612c5ad6
GET /static/base/css/normalize.css?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
etag: W/"5767fc1c-2005"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 2605
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/font-awesome.min.css?729
185.178.208.73200 OK 7.1 kB URL HTTP/2 base.garant.ru/static/base/css/font-awesome.min.css?729
IP 185.178.208.73:0
File type ASCII text, with very long lines (30837)
Hash f5876d87b3e8baa03757ca339bfb97d6
1f25fca8dfbf7c0446d9f476a6f0b0753bfa4021
1ff61db279d68c439476bfc24db5592cdaa8e1a81ebca24f95e58d2759002ffb
GET /static/base/css/font-awesome.min.css?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2017 14:11:57 GMT
etag: W/"59bfd42d-7918"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 7142
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/css/base.css?729
185.178.208.73200 OK 1.5 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/css/base.css?729
IP 185.178.208.73:0
File type assembler source, ISO-8859 text, with CRLF line terminators
Hash d692b0be044ea4dcb23a1d5fcb4a0752
f4d5efec7b490c4d0a07a545549d20f4a381881a
0e080b55aabb2de300c16517538017b7606ffa598e5e2204d8255f9cd6178977
GET /static/custom/pravovest/base/css/base.css?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:34:02 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 11:49:44 GMT
etag: W/"6332e358-1893"
expires: Fri, 10 Feb 2023 11:34:02 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15905
content-length: 1461
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/images/js/base/resolver.js?729
185.178.208.73200 OK 1.8 kB URL HTTP/2 base.garant.ru/images/js/base/resolver.js?729
IP 185.178.208.73:0
File type HTML document text\012- C source, ISO-8859 text, with CRLF line terminators
Hash 2dd110cd083ac1490115d41c5c3bff55
87d7af05e241f44f49c175b1398839778ce9c20a
08778a81ce41efd44972f08778ec39e66254b475ac0ef9e632a6957792f33c53
GET /images/js/base/resolver.js?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 20 Jun 2016 14:22:24 GMT
etag: W/"5767fc20-192a"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 1819
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/garant/js/user/login.js?729
185.178.208.73200 OK 3.1 kB URL HTTP/2 base.garant.ru/static/garant/js/user/login.js?729
IP 185.178.208.73:0
File type ISO-8859 text, with CRLF line terminators
Hash 0e107525e60e11d7b38f1470b5db4fb2
d672525f473045a04efdee2324dc9e4e1b9aba80
ee2c8ba594443144eac5c632040a9146239475ba5d9a7754c4840d8717e44e87
GET /static/garant/js/user/login.js?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Thu, 27 Oct 2022 08:23:56 GMT
etag: W/"635a401c-2508"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 3096
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
base.garant.ru/static/garant/css/fancybox/jquery.fancybox.css
185.178.208.73200 OK 1.4 kB URL HTTP/2 base.garant.ru/static/garant/css/fancybox/jquery.fancybox.css
IP 185.178.208.73:0
Hash ae785039495f3cf1db364c7edef1d277
7d61df99d66240e80361b206deddd48aab8684b1
c2e5bcb08f5a84d7b57878d3a3087cecc4dd6621b4487e8fcf4822e897ef8ae0
GET /static/garant/css/fancybox/jquery.fancybox.css HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:31 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
content-length: 1366
ddg-cache-status: HIT,HIT
etag: "5767fc1c-1461"
expires: Fri, 03 Feb 2023 10:11:26 GMT
age: 186816
X-Firefox-Spdy: h2
base.garant.ru/static/garant/js/vendor/fancybox/jquery.fancybox.pack.js
185.178.208.73200 OK 8.7 kB URL HTTP/2 base.garant.ru/static/garant/js/vendor/fancybox/jquery.fancybox.pack.js
IP 185.178.208.73:0
File type ASCII text, with very long lines (645)
Hash 88aa73266e45b1b753c1ba3f13a5914a
eb923523a2d90c1956bb21439317a30f1f181c77
fe2dde8cf42cd99d6916927b4699a7b280fd9e49c359a6866c99f108b5d655f8
GET /static/garant/js/vendor/fancybox/jquery.fancybox.pack.js HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:08 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
content-length: 8749
ddg-cache-status: HIT,HIT
etag: "5767fc1c-5a5f"
expires: Wed, 01 Feb 2023 12:05:26 GMT
age: 186839
X-Firefox-Spdy: h2
base.garant.ru/images/js/form.js?729
185.178.208.73200 OK 2.6 kB URL HTTP/2 base.garant.ru/images/js/form.js?729
IP 185.178.208.73:0
File type ISO-8859 text, with very long lines (310), with CRLF line terminators
Hash ff7c68a73046bf5e418184160068dd71
283404d96359a8e9b79497f1692595410cc8469b
ea3171d6dd1424b66ebc81f468d4ec408a6e227f8ce472a5a15fdfebbda7caca
GET /images/js/form.js?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 29 Jan 2018 14:11:24 GMT
etag: W/"5a6f2b8c-1b22"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 2553
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/save-file.png?1
185.178.208.73200 OK 1.1 kB URL HTTP/2 base.garant.ru/static/base/img/save-file.png?1
IP 185.178.208.73:0
File type PNG image data, 17 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash f1351cd668febb375da01807602360ed
8c865d7bc4bde4c19dbb5b01129c52f598525bab
3cee6a8e96eec362db922b272e1ba4b63fd7b6d58d4ed8108f4b3832d9754372
GET /static/base/img/save-file.png?1 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:33 GMT
content-type: image/png
content-length: 1148
last-modified: Mon, 25 Jun 2018 14:07:24 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5b30f71c-47c"
expires: Wed, 01 Feb 2023 14:32:36 GMT
age: 186814
X-Firefox-Spdy: h2
base.garant.ru/static/base/js/save-button.js?729
185.178.208.73200 OK 111 B URL HTTP/2 base.garant.ru/static/base/js/save-button.js?729
IP 185.178.208.73:0
File type ASCII text, with CRLF line terminators
Hash 7b4ab18469840bfb0d102fa28081eab8
d8195f15f0f2924781dafcbcaba2c86ab24bbf1e
28e2c54402f704ddd7cb47f8fbf5d9e4009a986becedf3eeb94539b473b353a8
GET /static/base/js/save-button.js?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Fri, 07 Feb 2020 16:06:05 GMT
etag: W/"5e3d8aed-de"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 111
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/garant/css/user/login.css
185.178.208.73200 OK 1.5 kB URL HTTP/2 base.garant.ru/static/garant/css/user/login.css
IP 185.178.208.73:0
File type ASCII text, with CRLF line terminators
Hash b04d165ea08c91b87ac242b357b0c0e2
b59aff23e1ee00403a16d5d77b7943a439046896
66a4f604fc6febd2d1b57d933b79c3f893aa395ac9e39085827ac2a502b1805f
GET /static/garant/css/user/login.css HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:04:33 GMT
content-type: text/css
last-modified: Fri, 12 Jul 2019 13:09:15 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
content-length: 1515
ddg-cache-status: HIT,HIT
etag: "5d28867b-1bf7"
expires: Wed, 08 Feb 2023 12:04:28 GMT
age: 186874
X-Firefox-Spdy: h2
base.garant.ru/static/garant/images/layout/close-banner.png
185.178.208.73200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/garant/images/layout/close-banner.png
IP 185.178.208.73:0
File type PNG image data, 10 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash b124d70f15b4c5db5f70d86d38b99efe
19e45c6992b39220b7504dd85bd7a0f6aa772b53
fb48cc0e64935bfc8be3a63ac27e42ab6b2cb7e8476d123fc94a5695fb886ded
GET /static/garant/images/layout/close-banner.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:31 GMT
content-type: image/png
content-length: 1035
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-40b"
expires: Fri, 03 Feb 2023 12:45:48 GMT
age: 186816
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/saveToFile.png
185.178.208.73200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/base/img/saveToFile.png
IP 185.178.208.73:0
File type PNG image data, 18 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 74cbe2c4e55bdbbd66d3407978748b86
20ca02a60b532a49c6067236fc8e5613744100ba
df5cf80056f5920a862272093920b956082a5f4c7aaf69656f0b3fe28042a875
GET /static/base/img/saveToFile.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:08 GMT
content-type: image/png
content-length: 1037
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-40d"
expires: Wed, 01 Feb 2023 12:05:28 GMT
age: 186839
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-logo.png
185.178.208.73200 OK 6.7 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-logo.png
IP 185.178.208.73:0
File type PNG image data, 253 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c4338dab1f12a02ca2361d393087c48
aed99361f6490ebd96485bd2f56858db83f0dfab
54d535479ee945f75f6a6e32ff451682ce61eb80bb84e42a6494b9c1736cb79b
GET /static/custom/pravovest/base/img/icon-logo.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 04:54:50 GMT
content-type: image/png
content-length: 6680
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-1a18"
expires: Fri, 10 Feb 2023 04:54:49 GMT
age: 39857
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-1.png
185.178.208.73200 OK 1.8 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-1.png
IP 185.178.208.73:0
File type PNG image data, 79 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 0812bdbfb47a8327f0b62aaf37ab3c78
6c53005e036862d77a4aaa9ae93e250950ef44b9
39ec1a9e34c463920686cede59135a21b2c1de5b8ab596e524599ebd6b3a3dd6
GET /static/custom/pravovest/base/img/icon-laurel-1.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 1783
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-6f7"
expires: Wed, 08 Feb 2023 12:12:58 GMT
age: 185883
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-2.png
185.178.208.73200 OK 2.3 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-2.png
IP 185.178.208.73:0
File type PNG image data, 80 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 2522eb5d98149eb9c0e544171a31b89f
9cf76a799d56ce1f57e70b22ee4f194655106123
adef5dea9e63462c495f806f74e28ee0368414909f89cd85614460543da47abb
GET /static/custom/pravovest/base/img/icon-laurel-2.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 2323
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-913"
expires: Wed, 01 Feb 2023 14:17:00 GMT
age: 185883
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-3.png
185.178.208.73200 OK 3.3 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-3.png
IP 185.178.208.73:0
File type PNG image data, 80 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash c83721410a6379fef3ee7423cda1648a
95c74ad4534e1221bae075accd4af0ab20aaadb5
ddb47ec3e499144636e497dbc9a66c349a0807f3cf00ad5636b175d0ffdf8d83
GET /static/custom/pravovest/base/img/icon-laurel-3.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 3293
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-cdd"
expires: Wed, 08 Feb 2023 12:12:58 GMT
age: 185883
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/drujinina.png
185.178.208.73200 OK 34 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/drujinina.png
IP 185.178.208.73:0
File type PNG image data, 187 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 109bcf074dba5d6f5c3aa5cb39809c39
13271f242580f772e1ba14186b5deb3eb4ac654c
de3cb9a5a3bd58c2c046c4d9e8d929100c2a097392a1ee51eea68640bb795865
GET /static/custom/pravovest/base/img/drujinina.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 01:05:42 GMT
content-type: image/png
content-length: 33537
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
etag: "60f03f72-8301"
expires: Wed, 08 Feb 2023 01:05:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 226405
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 15:49:06 GMT
age: 601
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/base.css?729
185.178.208.73200 OK 5.8 kB URL HTTP/2 base.garant.ru/static/base/css/base.css?729
IP 185.178.208.73:0
File type ASCII text, with very long lines (677), with CRLF line terminators
Hash b9be1eac99c65b7592ce577432da934b
1f6c8a0a23fe6e02e24b870dc8fab904d961ee3d
c6e10e6a276cb88e1f78372374c81023db7a4296349dea8d01ee6169a12e3d0b
GET /static/base/css/base.css?729 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 11:33:58 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 08:41:01 GMT
etag: W/"63297c9d-61d8"
expires: Fri, 10 Feb 2023 11:33:58 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 15909
content-length: 5769
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-PMNNFCX
142.250.74.78200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PMNNFCX
IP 142.250.74.78:0
File type ASCII text, with very long lines (1759)
Hash 2c2a409f5f44c2c96fd5663a7cbd62a6
fa7c25d07714c264c272eae0a76745b9b89a1def
205293d86a945bddae666a638c68f2cf2469b3689a5860c1a59a8a85f903e4f9
GET /optimize.js?id=OPT-PMNNFCX HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 15:59:07 GMT
expires: Fri, 03 Feb 2023 15:59:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4229
Expires: Fri, 03 Feb 2023 17:09:36 GMT
Date: Fri, 03 Feb 2023 15:59:07 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 46fc55806dc826d14dcd3399a3e3a0c2
d46862c3d340e53d1df7d16e6f2f78f667247a78
a893d0254fc89e9ccd88e3c6fa94dd0c5f5a56eb71a167ddd5504ddc7289b096
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 15:59:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 03:40:35 GMT
Expires: Sat, 04 Feb 2023 03:40:35 GMT
ETag: "d46862c3d340e53d1df7d16e6f2f78f667247a78"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Roboto&display=swap
142.250.74.106200 OK 3.5 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP 142.250.74.106:0
Hash 208e781728f380d19ec0d8f07004df85
5a1e16194ecc347cb3aad649a6a76081e3ead8c3
0effb8918f1de40a186952d7bb2aa51d589a0a49e295acae0479ab6c9f9a60d8
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 15:59:07 GMT
date: Fri, 03 Feb 2023 15:59:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
base.garant.ru/static/base/img/logo.png
185.178.208.73200 OK 7.3 kB URL HTTP/2 base.garant.ru/static/base/img/logo.png
IP 185.178.208.73:0
File type PNG image data, 131 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash ff93398ce419c2fdc03ba0385ac64ad3
a97b25cc313e5ae94ac261c133c5bee8deef550a
ca60da02cf2431987f60846ea5fba713baacf5f4c2a68df57f667c3dc18b0c3b
GET /static/base/img/logo.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/base/css/base.css?729
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 17:29:46 GMT
content-type: image/png
content-length: 7281
last-modified: Fri, 22 Jan 2021 10:51:21 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "600aae29-1c71"
expires: Thu, 02 Feb 2023 18:11:02 GMT
age: 167361
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 185693
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
base.garant.ru/images/nalog/close.jpg
185.178.208.73200 OK 1.5 kB URL HTTP/2 base.garant.ru/images/nalog/close.jpg
IP 185.178.208.73:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 24x24, components 3\012- data
Hash cc2c61893269efdf34fbd5b4ac574b07
9b564e80d6a9068469c351592de2cc7b1c11e690
55d6e8f237db3c9a118cb99ffce32737dddab5540a8591af6016bb499fa168a1
GET /images/nalog/close.jpg HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:06:42 GMT
content-type: image/jpeg
content-length: 1480
last-modified: Mon, 20 Jun 2016 14:22:27 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc23-5c8"
expires: Wed, 01 Feb 2023 13:38:32 GMT
age: 186745
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/tabBg.png
185.178.208.73200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/base/img/tabBg.png
IP 185.178.208.73:0
File type PNG image data, 4 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash c8c73dd430377d31f6e49cad7506699f
f56adb98bf2d4b6ff6a1f6c8d0aa8e98bfe65922
2f57e157a993d0719c5576ad99e2159a7e7d29f530cfaa441d25af9890e17142
GET /static/base/img/tabBg.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/base/css/base.css?729
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:09:55 GMT
content-type: image/png
content-length: 1004
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-3ec"
expires: Wed, 01 Feb 2023 14:15:33 GMT
age: 186554
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 410228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.mindbox.ru/scripts/v1/tracker.js
84.252.130.113200 OK 20 kB URL HTTP/1.1 api.mindbox.ru/scripts/v1/tracker.js
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (50002)
Hash 0785d52bf81361cb68cfad788e972cd6
d32bed57bbf1069a8f4a0a5d15a669e254f927b9
feeb4fc92be73b0dc42ec153276dd1720444e0bc14176ebe7bff0c57d916f6bc
GET /scripts/v1/tracker.js HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"955b21457f057e8014f21aee64e44d54"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: a670d01f8a2cd911
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
base.garant.ru/static/custom/pravovest/base/img/icon-idea.png
185.178.208.73200 OK 5.1 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-idea.png
IP 185.178.208.73:0
File type PNG image data, 96 x 91, 8-bit/color RGBA, non-interlaced\012- data
Hash 23ce04d42991d76cd4458b68564f2a9d
5c48ff10b8dc966abbe6ad8fc02188105df52da7
bc92d8bccfca4bad45a3f8887ab6925829a9bf63eddfc9292b8e2ce0f906e2f8
GET /static/custom/pravovest/base/img/icon-idea.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/custom/pravovest/base/css/base.css?729
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Sun, 29 Jan 2023 15:39:16 GMT
content-type: image/png
content-length: 5083
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "60f03f72-13db"
expires: Sun, 05 Feb 2023 15:39:16 GMT
age: 433192
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/bg.png
185.178.208.73200 OK 1.6 MB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/bg.png
IP 185.178.208.73:0
File type PNG image data, 2560 x 1440, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1571388 bytes)
Hash a9fd5b44c1b6466c0aef145db11709d4
136422454532e60e1ec6be95d80b057c2c0a55d1
b9ab0333786ee1745b7aa10ff499bdd7691821e8577e9bb6fc96a5c08d39016a
GET /static/custom/pravovest/base/img/bg.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/custom/pravovest/base/css/base.css?729
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:05 GMT
content-type: image/png
content-length: 1571388
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-17fa3c"
expires: Tue, 07 Feb 2023 19:54:44 GMT
age: 185882
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ffeec62ab7fcf936143b1e6012878fe8
4b94346a93132dd35911d4f7f063477c83e9a62f
3bf1765b735b85113b53a77fe8fb70eedbb74c0317707e933bc2da37bb7f4112
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5538
Cache-Control: max-age=161147
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:08 GMT
Etag: "63dcec25-1d7"
Expires: Sun, 05 Feb 2023 12:44:55 GMT
Last-Modified: Fri, 03 Feb 2023 11:12:37 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K0Y0bSAiFd7KouK84ntrwA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BeoOztGJThtDVYTgoQuc9wabaJs=
api.mindbox.ru/v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest
84.252.130.113200 OK 134 B URL HTTP/1.1 api.mindbox.ru/v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash cbac6cb0155ac78f054412cf4f28626d
d56c17c40c4ccfd8719cc540e00a855d1d350d41
3b3c3c2ade35b4ca1f4fceab70dcc03f6536c4d9e10522b9d9017f9b710a00d1
POST /v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 173
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 134
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 15:59:08 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; expires=Tue, 19 Jan 2038 00:00:00 GMT; path=/; secure; samesite=none; httponly
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/js/bydomain/base.garant.ru.js?_=465399
84.252.130.113322 status code 322 0 B URL HTTP/1.1 api.mindbox.ru/js/bydomain/base.garant.ru.js?_=465399
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/bydomain/base.garant.ru.js?_=465399 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://base.garant.ru/
Origin: https://base.garant.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown?_=465399
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method,Origin
x-amz-request-id: a4d7d309268104e5
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/js/bydomain/*.garant.ru.js?_=465399
84.252.130.113200 OK 1.1 kB URL HTTP/1.1 api.mindbox.ru/js/bydomain/*.garant.ru.js?_=465399
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (2266)
Hash a6e334c891e1ce81e12475122e173dd3
bc5ae1ee78a6474cd4f3fbaa22e5a4ff657b8368
db155abde77b267a5714a6387bf6a7bca989582a71b179576c5f160813ee1a82
GET /js/bydomain/*.garant.ru.js?_=465399 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://base.garant.ru/
Origin: https://base.garant.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"fa301896e4a52e396b5c1b8d8cbe6988"
feature-policy: vibrate 'self'
last-modified: Thu, 02 Feb 2023 18:50:10 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method,Origin
x-amz-request-id: fbaa090c88fa7bfe
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash b290c1d916d7ef1e904fc66c981f3786
0a06fb10a0d2d9e48ed30ec35829110e483339ab
5f06c72caaef8eb94291b4fd8a29ca705d8dd9d7e0457196b840526b55f1a8ce
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:04:44 GMT
ETag: "0a06fb10a0d2d9e48ed30ec35829110e483339ab"
Last-Modified: Fri, 03 Feb 2023 14:04:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3486
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3d7cffb4ed-OSL
kraken.rambler.ru/userip
81.19.89.18200 OK 12 B IP 81.19.89.18:0
ASN #24638 Rambler Internet Holding LLC
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /userip HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 03 Feb 2023 15:59:08 GMT
content-type: application/octet-stream
content-length: 12
access-control-allow-origin: https://base.garant.ru
x-srv: 2kraken-prod0002.ad.rambler.tech
set-cookie: ruid=1CIAAEwv3WNyBhWbAYidCwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAEwv3WNyBhWbAYidCwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
personalization-web-stable.mindbox.ru/js/service/styles.css?v=4.23.6
217.28.230.131200 OK 1.0 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/service/styles.css?v=4.23.6
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
Hash 6bae61ea5c2d3e70d94e8adaf73c51e0
7d56056c6385791e04693e3395ee9613f7129dd0
da32ccad4223720806394ed9b8370711ee572a8af82e97cd6a1682b6e42cbfdd
GET /js/service/styles.css?v=4.23.6 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: text/css
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"91c1a275fc417269d08f8b40cd0e859d"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 0ea3db5998e68ec9
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
personalization-web-stable.mindbox.ru/js/service/forms.js?v=4.23.6
217.28.230.131200 OK 126 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/service/forms.js?v=4.23.6
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (48464)
Size 126 kB (126139 bytes)
Hash b4a1bc64cd6b100e62d05996e3937525
7d553987767f2c149300bb8dcdbcd95f2ba80920
e3beee08dc758f34bcb2a34932feaabe53197c437157724796e101bea3bccfc7
GET /js/service/forms.js?v=4.23.6 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"202d017f5746dd99976a55fd5e57b8b8"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: e6ae3026995fb346
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 15:45:20 GMT
expires: Fri, 03 Feb 2023 17:45:20 GMT
cache-control: public, max-age=7200
age: 828
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 96affaec6c198498bee81a955846a880
1c9d1f4309c5eece36a04c058725829788e22b65
a854a802cf148e8db34e23f2881ca6595d68005d36a0d35a39d8968686f6106b
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:57:06 GMT
ETag: "1c9d1f4309c5eece36a04c058725829788e22b65"
Last-Modified: Fri, 03 Feb 2023 13:57:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3405
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3f3f94b4ed-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 8b800a305b6bad34aba15bd0b657ac10
39a0e1fd865ed5f8b336103e28d4036bc3885d3b
1894e6f41f8c9006535d1ec30fe5809dc161f8ea8c6f7a2451702ea4b2b299bf
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:24:49 GMT
ETag: "39a0e1fd865ed5f8b336103e28d4036bc3885d3b"
Last-Modified: Fri, 03 Feb 2023 12:24:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 560
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3f4b970b02-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 8b800a305b6bad34aba15bd0b657ac10
39a0e1fd865ed5f8b336103e28d4036bc3885d3b
1894e6f41f8c9006535d1ec30fe5809dc161f8ea8c6f7a2451702ea4b2b299bf
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:24:49 GMT
ETag: "39a0e1fd865ed5f8b336103e28d4036bc3885d3b"
Last-Modified: Fri, 03 Feb 2023 12:24:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 560
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3f4f010b59-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8fe6e0c2ad5a4cf47b5bd40d96370193
337ec297e939ae75a2bbc004db149a701e7ff15d
84490c84c9143862b7de944805e9294968468e304d612df167b389717e115991
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:14:17 GMT
ETag: "337ec297e939ae75a2bbc004db149a701e7ff15d"
Last-Modified: Fri, 03 Feb 2023 13:14:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2968
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3f5fb9b4ed-OSL
counter.yadro.ru/logo;garant-ru?42.11
88.212.201.204200 OK 443 B URL HTTP/1.1 counter.yadro.ru/logo;garant-ru?42.11
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 862df0eb2c34a66554c9402380e2e79d
f319d2a886e8c4e225ee8b21aa488da69c4f4fa5
f27a468a3c194582146fea73acb94b2adaf526259ebaf6a9ba00cc48707f8d09
GET /logo;garant-ru?42.11 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: image/gif
Content-Length: 443
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Expires: Fri, 02 Feb 2024 21:00:00 GMT
Strict-Transport-Security: max-age=86400
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8708e46f6070254ab8b5cfb80aa6437b
6f4c7ad107657e95fc401f5d8eb824824d6f5622
5b8b223096e3ab427e889209a1d725bc26e45406733d2b9900e22152b0f58f13
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:35:06 GMT
ETag: "6f4c7ad107657e95fc401f5d8eb824824d6f5622"
Last-Modified: Fri, 03 Feb 2023 13:35:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1110
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f3f6fdfb4ed-OSL
counter.yadro.ru/hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;0.6499823077439958
88.212.201.204200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;0.6499823077439958
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;0.6499823077439958 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 03 Feb 2023 15:59:08 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Wed, 02 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
kraken.rambler.ru/cnt/?et=pv&v=3.13.6&pid=44507&tid=t1.44507.539036500.1675439979826&rid=1675439979.826-1972458127&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=592099799994606&aduid=4eff9be6-d1da-4f53-a3ed-f777bc9442a3&aduidsc=garant.ru&stid=2143820306_1675439979827&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=845266784
81.19.89.18200 OK 43 B URL HTTP/2 kraken.rambler.ru/cnt/?et=pv&v=3.13.6&pid=44507&tid=t1.44507.539036500.1675439979826&rid=1675439979.826-1972458127&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=592099799994606&aduid=4eff9be6-d1da-4f53-a3ed-f777bc9442a3&aduidsc=garant.ru&stid=2143820306_1675439979827&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=845266784
IP 81.19.89.18:0
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cnt/?et=pv&v=3.13.6&pid=44507&tid=t1.44507.539036500.1675439979826&rid=1675439979.826-1972458127&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=592099799994606&aduid=4eff9be6-d1da-4f53-a3ed-f777bc9442a3&aduidsc=garant.ru&stid=2143820306_1675439979827&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=845266784 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 03 Feb 2023 15:59:08 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
pragma: no-cache
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 2kraken-prod0001.ad.rambler.tech
set-cookie: ruid=1CIAAEwv3WPGsFMmAUiCCQB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAEwv3WPGsFMmAUiCCQB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
api.mindbox.ru/scripts/modules/personalization.js?version=1.0.418
84.252.130.113200 OK 5.8 kB URL HTTP/1.1 api.mindbox.ru/scripts/modules/personalization.js?version=1.0.418
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (14874)
Hash 6bb9e73d36c1c16b46066b51fa13fd0c
95c8461364abd483ddfc4866a062dc45e0531ebc
a644f4a3510344dde845a40f9fc1e9bac1b7e6dbecc52b3dfa36e0ddea7ac1c2
GET /scripts/modules/personalization.js?version=1.0.418 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"18586cd204136adc815d9eeb83fa964f"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 90f9d5c8f3eead44
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
personalization-web-stable.mindbox.ru/js/media/popmechanic/tns-2.9.2.js?2
217.28.230.131200 OK 14 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/media/popmechanic/tns-2.9.2.js?2
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (31925)
Hash ed701d300f0263b2e5944f2da1f65165
4e13af30e72aa45351fbae8e3a3e3bc86eab502a
f2b24fac1457da9d10f58d615c0e3bb2eaa65008964d6f22161876dc92a049bf
GET /js/media/popmechanic/tns-2.9.2.js?2 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"dab2e845b3e2188dc0391d3fdd1432ac"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 4d1973c3889d4628
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
api.mindbox.ru/scripts/modules/helpers.js?version=1.0.418
84.252.130.113200 OK 2.4 kB URL HTTP/1.1 api.mindbox.ru/scripts/modules/helpers.js?version=1.0.418
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (7455), with no line terminators
Hash 879eba1786b9531c7a96ba9f0c595ee5
a732a1a1a23228823476fdb0fb57d5cc03300076
5f36a4377832af744117beee5910c77a20d88badc1d510c1ba8ead11c604dfaa
GET /scripts/modules/helpers.js?version=1.0.418 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: W/"48bebb0402525d5ff4527783895054de"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 4523df54fa5a1f76
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
yandex.ru/ads/system/context.js
5.255.255.88200 OK 83 kB URL HTTP/2 yandex.ru/ads/system/context.js
IP 5.255.255.88:0
File type ASCII text, with very long lines (65492)
Hash 6881b14eb3560272cce3e66c2c1af5e7
7ffd899fa2ce94b19036d03b43eafea5bad5c2fa
7cfb524739dba3eb602c09a5c93168eacde179a5c9de5be588353775ee55e4c2
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=EY025P64mLeH9gE6bfF+R4hY9v+vaAwjQHFQKOAS+TvYEh5OB/gkrqStMlqSLwHBUSQGZ+wPirUC+bIpyRtqpXAjI5o=; Expires=Sun, 02-Feb-2025 15:59:08 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=9359382171675439948; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:08 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 03 Feb 2023 16:59:08 GMT
x-yandex-req-id: 1675439948715470-10500653003882579371-vla1-4706-vla-l7-balancer-8080-BAL-5633
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&gjid=824955294&_gid=1841119219.1675439980&_u=IEBAAEAAAAAAACAAI~&z=903020539
64.233.164.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&gjid=824955294&_gid=1841119219.1675439980&_u=IEBAAEAAAAAAACAAI~&z=903020539
IP 64.233.164.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&gjid=824955294&_gid=1841119219.1675439980&_u=IEBAAEAAAAAAACAAI~&z=903020539 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://base.garant.ru
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 15:59:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/js/code.js
95.163.52.67200 OK 14 kB URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP 95.163.52.67:0
File type ASCII text, with very long lines (729)
Hash 557f853dec4e2eb5512822cf77ed10a4
14d83f93714fe8d59046ac945ce69feb164206ec
4820794d01d6c01c8de3cc025c5d54abf8607c4087649efc54cc20e58bf4287a
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:08 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675439948:0:::; path=/; expires=Sun, 04-Feb-24 15:59:08 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Fri, 03 Feb 2023 16:59:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
personalization-web-stable.mindbox.ru/init/35758/no_endpoint
217.28.230.131200 OK 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/no_endpoint
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/no_endpoint HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 344002
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: "5df8e234c36f842788fe244c9128adf1"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 15:58:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 25dfe870d168b1c3
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*base.garant.ru
217.28.230.131322 status code 322 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*base.garant.ru
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/domain_and_endpoint/garant.ru:*base.garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Fri, 03 Feb 2023 15:59:08 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 9dcedd9e3d2da3f7
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru
217.28.230.131200 OK 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/endpoint/garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 3869773
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Fri, 03 Feb 2023 15:59:08 GMT
etag: "3e1f33a7ad5003de122b50eb2e35319b"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 15:58:39 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 261130d1c736e74d
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*garant.ru
217.28.230.131322 status code 322 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*garant.ru
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/domain_and_endpoint/garant.ru:*garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Fri, 03 Feb 2023 15:59:08 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: de7bd1032388e4df
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/watch.js
87.250.251.119200 OK 0 B URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.251.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Fri, 03 Feb 2023 15:59:08 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Fri, 03 Feb 2023 16:59:08 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash da11e82046c24b62b0d5d13495d84e25
a3324961a6bcef318708207ddf0c2fb07b0cf39d
f8dc178a692f7f1f6e43c343911ce2dfb9658c08c915be3600380e31d41e197d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:30:31 GMT
ETag: "a3324961a6bcef318708207ddf0c2fb07b0cf39d"
Last-Modified: Fri, 03 Feb 2023 14:30:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 637
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f419acbb4ed-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash da11e82046c24b62b0d5d13495d84e25
a3324961a6bcef318708207ddf0c2fb07b0cf39d
f8dc178a692f7f1f6e43c343911ce2dfb9658c08c915be3600380e31d41e197d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:30:31 GMT
ETag: "a3324961a6bcef318708207ddf0c2fb07b0cf39d"
Last-Modified: Fri, 03 Feb 2023 14:30:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 637
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f419add1bfe-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash da11e82046c24b62b0d5d13495d84e25
a3324961a6bcef318708207ddf0c2fb07b0cf39d
f8dc178a692f7f1f6e43c343911ce2dfb9658c08c915be3600380e31d41e197d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:30:31 GMT
ETag: "a3324961a6bcef318708207ddf0c2fb07b0cf39d"
Last-Modified: Fri, 03 Feb 2023 14:30:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 637
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f41aae3b4ed-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash da11e82046c24b62b0d5d13495d84e25
a3324961a6bcef318708207ddf0c2fb07b0cf39d
f8dc178a692f7f1f6e43c343911ce2dfb9658c08c915be3600380e31d41e197d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:30:31 GMT
ETag: "a3324961a6bcef318708207ddf0c2fb07b0cf39d"
Last-Modified: Fri, 03 Feb 2023 14:30:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 637
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f41aeb2fac0-OSL
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.215200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.215:0
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Sat, 03 Feb 2024 21:48:15 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 1fb0dbc21718b14f
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.215200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sun, 02 Feb 2053 22:31:48 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/1c0942547d39e10f5f56.js
178.154.131.215200 OK 4.8 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/1c0942547d39e10f5f56.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (14344)
Hash 7749d37e0e2ba5a2c857a1c0bdc8b1fd
c1beb845c858b6d22045d76bf6ba1e90a168714d
ed2c47feabe99774879658c0517c72c406a9e2d2b8fd280394eaf4bb98729970
GET /partner-code-bundles/716043/1c0942547d39e10f5f56.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 4801
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "7749d37e0e2ba5a2c857a1c0bdc8b1fd"
expires: Sun, 02 Feb 2053 22:33:03 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js
178.154.131.215200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65494)
Hash 5d29968bb46055943c2db2d4205797bf
51cb5c66e80cf6a1f135a4922d5fd120bf145974
d3bec2a3bb2d81a15e8b431c184c5d07e7b176efbb2ddbcab0b75b8b472d9451
GET /partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 23531
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5d29968bb46055943c2db2d4205797bf"
expires: Sun, 02 Feb 2053 22:33:03 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/07cea2bf8567304efc16.js
178.154.131.215200 OK 7.9 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/07cea2bf8567304efc16.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (23593)
Hash 9e20c0213c1a25dded304a55c581b154
893a64811863a2d63ad12abf6c04d0c3b8a60a5b
27d7cdda3b34100a6bcabc26195471e0eac866e08111321b4fe8f63c66a0ec8a
GET /partner-code-bundles/716043/07cea2bf8567304efc16.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 7930
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "9e20c0213c1a25dded304a55c581b154"
expires: Sun, 02 Feb 2053 22:33:03 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/2ec9a88e40a26b53acde.js
178.154.131.215200 OK 2.1 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/2ec9a88e40a26b53acde.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (6989)
Hash 09997d8f01e586ad7fa18f4ef6592dcc
82ff24812894f0230f8c1e691a4cf98d02d28aa1
630f3c92319e83e4284a13a67789e26c788f741ce0d6c131fe68e180712bf570
GET /partner-code-bundles/716043/2ec9a88e40a26b53acde.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 2065
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "09997d8f01e586ad7fa18f4ef6592dcc"
expires: Sun, 02 Feb 2053 22:33:03 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/de9c4be8e88d42b2efb9.js
178.154.131.215200 OK 0 B URL HTTP/2 yastatic.net/partner-code-bundles/716043/de9c4be8e88d42b2efb9.js
IP 178.154.131.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner-code-bundles/716043/de9c4be8e88d42b2efb9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 113366
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0736127f132f9c5d09ad0fb5d789a73a"
expires: Sun, 02 Feb 2053 22:33:03 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 15:59:09 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Fri, 03 Feb 2023 16:59:09 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.251.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 23725d4220615896f80f03b6c52aff4a
efbb36c1e99b7b26c8b204804fab3abfb199d2f7
7475d824639bfcbc6988e21b333698912c7d9589e79de62a062ddfc766fefc31
GET /watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Referer: https://base.garant.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Fri, 03 Feb 2023 15:59:09 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 15:59:09 GMT
last-modified: Fri, 03-Feb-2023 15:59:09 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/b887192c4a62fd372984.js
178.154.131.215200 OK 3.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/b887192c4a62fd372984.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (9149)
Hash 2e50dbda190111e20b06531c8df6dce2
2e37aeb104cb3f7e4564cd701702f803adc4f6b0
9a1f38cb09607578fe9cb9ebc2a0b3fc5d066ab26ae5b9269c13f5c2b121154d
GET /partner-code-bundles/716043/b887192c4a62fd372984.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 3549
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "2e50dbda190111e20b06531c8df6dce2"
expires: Sun, 02 Feb 2053 22:33:09 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 388e313eb1863c3535db258ce4327f6b
eab5b3890e5bb9b6cc838aefb36e93777a9352ae
f53686efeb084e04e73c62bc5182928f7a0f3028f04fdbee05194f770e085ac5
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:05:12 GMT
ETag: "eab5b3890e5bb9b6cc838aefb36e93777a9352ae"
Last-Modified: Fri, 03 Feb 2023 14:05:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f43a82a0b02-OSL
personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5584799
217.28.230.131200 OK 472 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5584799
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 472 kB (472039 bytes)
Hash 1a16aee92c440bc6b3a63a2940f14bcd
64f1b262710fe7732cf31622877c5497b4786ea3
84cb5a8bafbc46e0769e6b0b2227e51aa85caf2ce72ad1c71975581796e20066
GET /init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5584799 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: text/plain; charset=utf-8
date: Fri, 03 Feb 2023 15:59:09 GMT
etag: W/"3e1f33a7ad5003de122b50eb2e35319b"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 15:58:39 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 60b3300483a102e8
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
yandex.ru/ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&date=2023-02-03T15%3A59%3A40.544%2B00%3A00&pd=3&pdh=1024&pdw=1280&pr1=3110489942&pr=1195864092&prr=&pv=15&pw=5&extid_loader=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=3179561675439980553&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&pcode-test-ids=657519%2C0%2C17%3B706837%2C0%2C31%3B711101%2C0%2C19%3B716040%2C0%2C40%3B714014%2C0%2C9%3B709000%2C0%2C58%3B672577%2C0%2C95%3B715191%2C0%2C90%3B716043%2C0%2C2&pcode-flags-map=eJytWGmP2zYQ%2FSuFPxep7iPfKImyWUuiSlJ2nCAgnKyz62KPYo90myD%2FvUNRtiV5Q8dpgWDj9Woeh3O8eaOvEzKtKMOyJJzjTGZIIFkjhkouc8rkgmSYSlLJlJYJnbx%2B93XyeX39tJm8nmye%2F5r8OnncPDySC%2FjVjy3P9yff3v86WSAuGf6jwVzIRYlqmTNaSpTxgb1gDe4DBHboRFYLgCuUFHh0OHzISUUEBv%2FSOZ9RIZdEzGgjJALfBTd5F%2Fh%2BELlng%2F8fyKgoZM1o1qSCHx9zHjQGyDPz0gNReYEzl5AKWaAEFy0UgCSoqjAzZydwXS%2Fs%2B1LhpeRzsIZ%2FCpCiDDNZF2g1gho7FPlOHO8dIlWNplhyQdL5SmaEK%2FCsjVqiUpvl9A18zXAqJMdFMYDGb%2BohdGg7B%2BiGD72sUFU35lvGdmh5ewAxYxAtzJgKUy55wxZ4BSGHJE4l4bKCMlmggmQnQJ3Aj%2FagKFPRX6m67ZAE1W3S9YwRLLRCLwoPYEUBHtKqWMm6SQqSSlSTNq2QEi6gs81otm35dq9pS7rAkhZgS97iPRGo9v1xD2038qxDwQndFJhxQquBJTzpRPHQFmjEaW2binQl1d6mrPumj%2FdPm56Z50RurI9UOee8reqRzbgOe0YqVhhXkiYcQ4pH5Xu7%2FnC9GVi6gRPrHOTkDVBnJWeYTGdCVsJ8pOe7sQ73ClUZfiNZIzNaIlIZqdUKHTfYn5cwOgdn4Sw5ZaPaG1vaoR8FLx6oWk0wkhjNHdsKdDu8xZUj8wa6ckkyIEZSQtcabT3b6%2Bi8te06WyaUqaQylJGG%2F%2FKDCCuk%2FNYOQ80v0crIyb7nhl2cs1xVLa9pBYUhSImh7wamjmVZQ1vPcvWd65RmWDUpx5WRqH3PB5iulBRfMaxqd3eeVDRlNPfC0Dk2B8qBn0vVRFCdP4OwcwBIqhlky7Veti4wYpUslSJYIEbQ6N7O4FDfsroo14xQRsRKJisYTXhZU2YOWBAGXe%2Ft6qKj%2BJQbh4cPBB31KhJIOEXAzzAo0hSyxA0s4ceub9sD27aK%2BV5H1MDNpJqaQTy%2FY7eUNpWAUharGkvX7DVwtt9LT8lSiBMnCSkgaubj4jD4riUwv0yB9ecnTt9hlE0hiJ72Egg2JzBpibpEjlJzN8eRE4Y9PzoQrUNggEGxqdGfgKxRHSMYLYoTOsByPFdX3ZShxDE%2FCyVqHZ5tx1PfwLcdy%2FT8C51v%2B9%2Bx2BXHDLfjh%2BEMc1DJRv9s3wm0tRIcDOfAOTPQRFOSmu0ityPYVguwUnUQw9Vu7tUMJ2aKD4CjHXvQSjADGdR1Bd00w5APRds8ZWrCcW5kosCObU%2F70zNCda2uMoXWMBs7duwPPJkR0V6jBwbBnAtq9sINHWege9O6lCXOCJIAggRZtEPejBG7w20irdP%2FjDGS9hnOEXTUmare860gGISJl4gJCdKqwQr8VJL8IAgOm5YWqSPPtGalSva2AlXy4oRXoR123Zgq7U2rrgpRrjiO5KAEsRb55nIMoziI91IsZwRgQJ1qe9IW0xn2yfyo1Y8sgtjtarZnce76GoSxZ4V7FJiDmUIozSdHXmCPT9ZFZj7LcTqV22sMpeV%2BqDuiwLPdHWeAJILFEq4KRSNdx9IarZ0JWm4dr3ZHeGHkHt9CTM13gDRFB6sD5XNZwziByQo77wKX45k8%2BfQgH%2B%2BePl6N1i4rcsbLpabdF%2FLYreYnkgNbV9e8ur1gC6ylYO2AOjUygzj23G6HGR6dF1QvV9rREyBR11LfA2krdRie7bO8WT%2FLq8328urxO3CkUpQ8xwlKJGwEJidgnY3CQV9raljOoOR61adWWb2ONjDw2tUb9BgGljS2e2hbXqdsGJN69okGJKSmjTbQLUM109nJTdTTfV%2Bgt6uWaWQrwPtmXyefNo8fr8r1%2FeX2thvhN3cfttcb%2FnF9vb29nLx2vg33SdAtvSLQHAt6XCaFqoSCDLfZd5Ob9fb61f0T%2BPbP%2BvZi8wyff9verC83D4OvLtc37TcXXza3%2BvH15%2B3jnf5486r3y8XttvtWIe8R4Iv79Zfruy9X3Z%2B%2F3Ov%2Fn%2B7Xr243fz8cPfDn%2Bu5m25q%2Bf%2FmK%2FfY9pNacvmBX5wNjVZ%2FoROLB0t4lHmTKQukNrZ93AqYgFSQfkUJpTAoLxejNQUcaw3INInfwmql95bV%2Ff6bypfpo%2FI5txAUfH69HxWVbdqdeeTYfr%2FhwGcuzRtezOpkvplTtGBQCVEhW1i8LwqMTPcs%2BvEha1IgYtjFrEIHYsg6vTzqB%2FROWKqEI2nqmVhRSqrzsFXr7YgcLxdaHpjfe52ewzbw0AEyaPAcsXNaw1BSAeN5dO%2FN29p0bK1L9rhbPHhcehpnabNJZU83PlxOO3%2B1LajDr10pSwP0KJLC5cnx7t1Ur%2BnuxVt2jWlWC4Nu%2FXkL%2FRw%3D%3D&use-server-side-rendering=1&pcode-icookie=7qIFjG7HqTSuGfKdseYzwTH0Ipq41oUpix7LLISQ8WcD1o4SP9Ru2ueWfG2OGnlr74tXpqGSkQN3HUv4stDHmZ2Wvzc%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxMDl9ChLCppDkNmYQBupKhe3-denWrU3tcn_fJ_4NzZBEBEdfmpnSc9G3i03-Cb54HNyJU77JfNNzNids-ydY-te1a9d2-M9AXwZwDeKqKqoiqoIPbxpmgre5mYgoDiqIoCrzQeTi-FIuDhcyF6vDo9V2H9A-xO6D9wHRfUByoftiLk73-Vw8H8OX-gJf5KM-JDAeQCjdF3UuzAVatNDh-sgPKBC7j_QAhtEBtPsA4oP63IL6vAEK2JruYJVN9oFNCVtGQkpBCVuugENBKSOTkcopEJXElPCHQUoSuUzRiRUkcjAZ4cjxyQnICGVkRMSMnZyIWCYnloHJyEzqMsJPmQBNDiQgExHAwQ-zoitM6sIs6mJs6nIm4c9b4BLBAVInJ1Xg44PJSEhESCInh60gJiOnfwKAJiMiZKSghEMGlAo9kAkUhIRyggQ4cgUBnA5XQUwchU9_HDwwsJUUlIoUPlBhkZLSk5IRg_aw8AkVxBWeTA5gMnpCAjISBcGD50Pw-T4SF_uJLnoCiLsvfFIhP3lFCygSF7IveDiQus9byCD7qFxsSvjHHcU9-TFcysX20RcMaafvPuZAyIXmi_-1_2Jf-OD87_hc3IeYn4MPsJTwFffWpwP8J2cFgJxw_136Z1VOypgRkIjkgTwqQHxuecctF3I_yizzzx4X231_ihgYKRme96fqg-Pz6R_wpdLxEAQHkI8FgjnnPsTcZw6IkIOgAvB_DOYeq7AdLf-5FnCh3PVg7mUi29Lo6eljPijD0F8i__nl_SWKHytxEtDw5SRkxAoC_AcLxCWnaOmDx4Uyj3D95M7JdZv4cgUBOewHEqhEBCQPcgNwBEuj_MsUcJ_-lLBIc-Dp4cKSyYiIDwhSsgqEglxGBhT5UwqwPkg-xP8QyD4og4ekZM8oLNKMb7gEzyo5ASwSwuH7iULx2IH0_5Ms2bCGdAe7wQL0Xcx_FOMBKJmHIO-_7o24N5sPF-8OUHZh-Ac5IB7WQ77_ODwVdYYybfVO1gHoIcUdfOYtuJIYtcE_tVGXHaQOUDscc2oe6HN3yEfiyswBJ-pHyijZBc8W3ixiZzjaazs8ut85DZ3SQbX6WWnXqFxM2PCmjvLGkraaY0h2mfhy8uvp3qrvIOk3BDXlpmATEcgYKToLaAtbs7eSnklyGHBJichBiwPb8QFCrX4gCAvdBiCP7_mNtrkE5YYa6o2fnfS_JPeVGUxq6qcZF9JDhtXVdBo6EMD7GNoOOgjg1Woq-ucUMN2XzNwdYkB6Yuw9z4zlYnGhPoMYN38geofwp7_rfIQRH_X7fl54AF8Aiq7jHZUkdd49d5CeU9G1dMlOoptdQy_e8dAmzw4Bwe7yMiiY27zu_Ew-hWE8Gw8G_y5C8EQ9pvmH8YvV7dkVXP43b-wfb4_d-2LJ4N1s6Ow5agOugOz8T4XvfUdKCZ_w8XgxHERfqO3bv5GP-PnPjvSSaZ3P3eMs-rfy-xhKH2C3l-18nyUnrJeU44RG6e46Dywdo3OBS49i95iW9q5zAnAFgYJYBnQiEpLfYoD8mjw5NCrG9vz7OQA-bsPYp9yM5y3ZGgnn4K_gR22Yeh_mQvmHQlvaP-DY21Ylg8cPB_07MfYT_U75QJk-upe5JMCrfPwIzv4g3tOp0yj_k7MHG9s_H8JTWHC9rGvcx_AMdDVVb-uOw8W6djSrSDWrSN-DC4SS32i-RHZcgt5p1crdHtfNuc5xy87kHLmQ7M9xB7NGO_QGXH8IxDfA77S33Px9XtLP2ro7dN3ppOVjRQ5OFDm4G-57cDeYeTv5r6pGOyxa4AdXds0kD754Kd-32NwjkDib4dHBo750L_Jh_2eOyE8x3AF05n6btjONca7QW5AffLScHDOG40Sdi7AE4wEX33jFPAIvgJCGgaHSEmRPu7WCNuhQEm7QpvrYGmYILz16On_VcLp9qlFP2vdxyM-12CRh9vy33MvxGupMb9E1XsEeueQBjjZl0jAkugrlZmCh22EDzhJQ8PQ7vMJ72EOGh3bOZ6HZqT_NvbbEe6cgGxi-UOcdAvbDumIFZwEiqOAmrfKolM6py4Q_CcaXXXafN8VtWDuitLOW6Vb7IEXPX9d6Yz0rye77MoI3OCTZL6E_rXHCt99wO3r716K2OMSd_HTxNgdTMNj0s_mwdFiajTRZUOmYuIkmTxP5IUDbnn8n_NS6QS2uzcL503qaoY_GsBHkvZtaiOO1M-PPvBW0O-MfUc2VBg8Kb5mQzJq0g2sT7MqD0D1W8jYSL6VFtVfU92wlavo5yNvIeLtzKK1DpWDyNrWvgxxqLXF15iB9PpD3N1JvoEqmQdQG9-_XJEWvmlqpVZdC1LpA0-1OtEQHL2M4HKYOQoGxAEPbLijYsT0lxj4F1Q2jztjYRYP6YC97h-E4k7Jc6VRqJtvyvzO__gcBfFr-h6pnlpX5PxHjd5Wel_nzbZ17C8A2PgWlElj2MRY8aLUZ9tu0dFFq0Y1-R1cX0LWNkLZPTFvBaPnTLZGaRqsydXaxow9jXjmyzZgLMUt72bGKcoMdqTEk2p2t0PG3k0IvUwOlTbSkZoVUcgX0f_i1a-wd9DPvGkfuyd7nT5hLu1kLi5mqCA1aBeezNrhHjw3281paV3Fqye0WUxzUzEjU5jDWhiyF9hjlzVjp9pdlULK4WmKPe7mt2XCBsPFPaemBi6tI4TLo4uHZf-rQ3RbZvi3ZCOD8SqLvG-YV3bjVTw9tv5-DnrTO3XN9Pv3yh_rjHiUppe6i79awsotshGXYdvJH_Hh5Qd3NSYUbscMrJ1SJUyNJ2N7VHR0uQgbEFrIbAs45T-Cft4-7E5oo0Aa4cL320oKje42YW_QK8n7tjHr1nbc3nyT7VG0-bRErfk2bxq9pew1gq-BNADuPYWOZiWGj75DzBqE0u7FnoGu0mmD8Wgh8jl9H-_OT48KQZcjO5Ghx3BpHkVbyLXdbreDUVFb6TLSVvD2WtGxclEUybmzDXIC3o8lKjDkAcel0m_BJBjMlC0QyMHaEFhq1H4ijaa_YkfjyY1OQI6KDq1qCC_g9osUWU6mf9aokV67-O4fgJK_Ukry7sDl5xfZBzv0J-s5i0VbpZbrXEPgRtCY_6xLNh8pSMiPg31CL0WPNs939uHXloZFoxxnWDJ46v9Ms4Qab-6paX0gTJZR0Im8K-xRHfShur-a5G3mc-SNo4eJ2SccEVr04r9nx5qpKvdg9PNn-2eqPigP1AdIKpzQ5KYvHRh52pI2HHWnp-n4F42L-W1v_DIHHSeAx6_7wagBSTUvHygAk57EoCGka0GLMpT7-V6cpqLk2y3BN2h1jiXw0NitMfVPfikm8XfxLj0tNMTUa7gWotsSueDipsDNolEx3Wg6neyzAhxfNBcKhM7Oxcn44rGs6sLeVH9I0mC2heHl4c4a1O_TnjBCGp2QJYgdm5F6pm3jthKMROMvJJ3UGEGfA55GaNWrHnTN7CpfY3PJuE0Z6TAJlCSaYOYAxNL57KcHhWs8I5yjErar4z0BaIqDHXNw6trlht02zYpqpoj502mhIXq3mMIpOk2yQWl2nPw0Nc33pKgSzBJwFBX7goG7zWqpPBtnayl2nkVmvt9ix1FMgnIynPLnU4-Ht4W8FDzX3qrtouyx-5XcEYVje8rKgwtbXmi38iq1JJZG5P9R2x9xu39TuiBstu-FfwFZXqftlHm4Es45dRbQd_munXFJLlHh-DLbe6JiRLpSoSWEljgeYxpg6jkNrteiF33-acaHVWPpgIPYVPiY-p2vXJFxgdjwWv-ni7mbQF6eFlrcUH9NpKl8ba3G6TykRLXrHC7AkwHp6Xh7aRuZRfhJHpE05Jq2IrxrShPXjp3sRbjacw63GX5yP_Ew6Tuf8Z9X759yW_1Z8Y7g4esekF7v895PluAKCYs_g1VikMG4Qm4eZBNVPiTpB1AfYpfTIC654W0uLdU4sVDCBxzycPfto2wGaeTjGxJpT767VKDUYYKUNJsaLe9KNqlJNLdIZfZDC2DKEcmPLxuBtwS8h-B-2jLHRZtFwLpbVdu-2GzcP1OjNxdgdY9pwR7EfH-KLSoQmB1v7B6z4P7MBdjiC3Ib58lADkzuwsgljfsbwmVFqHKYaLHfsyTc36jXgFiG1IVvQ-WdXKwDTGutvr7JWJg4dpGBN0Jp97ZPAM0Nv8OqYc2Gy2OqYEB8XmZvMWn8ow5sStzV_NPZNIJiaAO-w0oXt7m3u5l9m1-9tAltxl0TwZaIKz-5ldv6BvHKXlvQ9h4Z_1r-umMX4tF129lTuKKfSVNpvOdPNn1Hk8hbEw0aMjRCgIsgz5WQKOQlqYzt-Iyl1GEuMV0xg_32LqnmpAXNQDrFiX4SVVMp8047erNAUOQtNw9XomPkAJqG4L27Vk1nn6jhKpR6RjDPQgvpMyPXvxKFPSgPuSjXrlwSwivWvif9OozT4uxnMyEtgqIj4TB_CGNy279-zEXGLA4Fvz30g2UcLS2RkuXJMTVQXRlTNxWhCYbHqF1NHXrvuifRA0TkjxYd5N4vGzvv8Q1AORKSS2TgeKgo8dGPDNtlf3GPUzH9nMk3sdJQWXaZIZ0fYnAdoyVWEjb5q4JNzky8OjPciTrTOTC8aItvxAe4IN-FC6UV_t8xDmpuv1ciRGTlsHGQZMwsWtTWctVYpJSOui_pXK9w-MOFGXu7qFPaqynamiV6z0k2Ci9em-qZVISfX9PoywEFeoiLf8T3PII4aGReH3oewB3G8Y_53j9x7KKt9JqmVeLPmDdmHXDS5mH5LakzOWZ400nqmDkk0wB0P0EW3R2r7kbyPCMfBcoBhbq0IOdjlpNbU5jdLS_OeqcwWVnSlKAd66W5Lt9ELGmMLK__6FXzFVI-ftFHtYZNbc5k_Fk9j2i4OayrnuBxs5rXRpwbhq-yN7d16IVrVqQ47lvcRMcfywdYbd2uaLDwdnhlxDGd0Rkps-mVi3-Nl1wf-Fum2VDVqW6s6A8pR4xH3xDy-tmTPPP6BFOyGNDMR6l6t4015i1wqeEnaLO1PY5fhd5kshBRMVnNUadVxD00zGGdb3zHO&tga-with-creatives=1
5.255.255.88200 OK 54 kB URL HTTP/2 yandex.ru/ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&date=2023-02-03T15%3A59%3A40.544%2B00%3A00&pd=3&pdh=1024&pdw=1280&pr1=3110489942&pr=1195864092&prr=&pv=15&pw=5&extid_loader=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=3179561675439980553&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&pcode-test-ids=657519%2C0%2C17%3B706837%2C0%2C31%3B711101%2C0%2C19%3B716040%2C0%2C40%3B714014%2C0%2C9%3B709000%2C0%2C58%3B672577%2C0%2C95%3B715191%2C0%2C90%3B716043%2C0%2C2&pcode-flags-map=eJytWGmP2zYQ%2FSuFPxep7iPfKImyWUuiSlJ2nCAgnKyz62KPYo90myD%2FvUNRtiV5Q8dpgWDj9Woeh3O8eaOvEzKtKMOyJJzjTGZIIFkjhkouc8rkgmSYSlLJlJYJnbx%2B93XyeX39tJm8nmye%2F5r8OnncPDySC%2FjVjy3P9yff3v86WSAuGf6jwVzIRYlqmTNaSpTxgb1gDe4DBHboRFYLgCuUFHh0OHzISUUEBv%2FSOZ9RIZdEzGgjJALfBTd5F%2Fh%2BELlng%2F8fyKgoZM1o1qSCHx9zHjQGyDPz0gNReYEzl5AKWaAEFy0UgCSoqjAzZydwXS%2Fs%2B1LhpeRzsIZ%2FCpCiDDNZF2g1gho7FPlOHO8dIlWNplhyQdL5SmaEK%2FCsjVqiUpvl9A18zXAqJMdFMYDGb%2BohdGg7B%2BiGD72sUFU35lvGdmh5ewAxYxAtzJgKUy55wxZ4BSGHJE4l4bKCMlmggmQnQJ3Aj%2FagKFPRX6m67ZAE1W3S9YwRLLRCLwoPYEUBHtKqWMm6SQqSSlSTNq2QEi6gs81otm35dq9pS7rAkhZgS97iPRGo9v1xD2038qxDwQndFJhxQquBJTzpRPHQFmjEaW2binQl1d6mrPumj%2FdPm56Z50RurI9UOee8reqRzbgOe0YqVhhXkiYcQ4pH5Xu7%2FnC9GVi6gRPrHOTkDVBnJWeYTGdCVsJ8pOe7sQ73ClUZfiNZIzNaIlIZqdUKHTfYn5cwOgdn4Sw5ZaPaG1vaoR8FLx6oWk0wkhjNHdsKdDu8xZUj8wa6ckkyIEZSQtcabT3b6%2Bi8te06WyaUqaQylJGG%2F%2FKDCCuk%2FNYOQ80v0crIyb7nhl2cs1xVLa9pBYUhSImh7wamjmVZQ1vPcvWd65RmWDUpx5WRqH3PB5iulBRfMaxqd3eeVDRlNPfC0Dk2B8qBn0vVRFCdP4OwcwBIqhlky7Veti4wYpUslSJYIEbQ6N7O4FDfsroo14xQRsRKJisYTXhZU2YOWBAGXe%2Ft6qKj%2BJQbh4cPBB31KhJIOEXAzzAo0hSyxA0s4ceub9sD27aK%2BV5H1MDNpJqaQTy%2FY7eUNpWAUharGkvX7DVwtt9LT8lSiBMnCSkgaubj4jD4riUwv0yB9ecnTt9hlE0hiJ72Egg2JzBpibpEjlJzN8eRE4Y9PzoQrUNggEGxqdGfgKxRHSMYLYoTOsByPFdX3ZShxDE%2FCyVqHZ5tx1PfwLcdy%2FT8C51v%2B9%2Bx2BXHDLfjh%2BEMc1DJRv9s3wm0tRIcDOfAOTPQRFOSmu0ityPYVguwUnUQw9Vu7tUMJ2aKD4CjHXvQSjADGdR1Bd00w5APRds8ZWrCcW5kosCObU%2F70zNCda2uMoXWMBs7duwPPJkR0V6jBwbBnAtq9sINHWege9O6lCXOCJIAggRZtEPejBG7w20irdP%2FjDGS9hnOEXTUmare860gGISJl4gJCdKqwQr8VJL8IAgOm5YWqSPPtGalSva2AlXy4oRXoR123Zgq7U2rrgpRrjiO5KAEsRb55nIMoziI91IsZwRgQJ1qe9IW0xn2yfyo1Y8sgtjtarZnce76GoSxZ4V7FJiDmUIozSdHXmCPT9ZFZj7LcTqV22sMpeV%2BqDuiwLPdHWeAJILFEq4KRSNdx9IarZ0JWm4dr3ZHeGHkHt9CTM13gDRFB6sD5XNZwziByQo77wKX45k8%2BfQgH%2B%2BePl6N1i4rcsbLpabdF%2FLYreYnkgNbV9e8ur1gC6ylYO2AOjUygzj23G6HGR6dF1QvV9rREyBR11LfA2krdRie7bO8WT%2FLq8328urxO3CkUpQ8xwlKJGwEJidgnY3CQV9raljOoOR61adWWb2ONjDw2tUb9BgGljS2e2hbXqdsGJN69okGJKSmjTbQLUM109nJTdTTfV%2Bgt6uWaWQrwPtmXyefNo8fr8r1%2FeX2thvhN3cfttcb%2FnF9vb29nLx2vg33SdAtvSLQHAt6XCaFqoSCDLfZd5Ob9fb61f0T%2BPbP%2BvZi8wyff9verC83D4OvLtc37TcXXza3%2BvH15%2B3jnf5486r3y8XttvtWIe8R4Iv79Zfruy9X3Z%2B%2F3Ov%2Fn%2B7Xr243fz8cPfDn%2Bu5m25q%2Bf%2FmK%2FfY9pNacvmBX5wNjVZ%2FoROLB0t4lHmTKQukNrZ93AqYgFSQfkUJpTAoLxejNQUcaw3INInfwmql95bV%2Ff6bypfpo%2FI5txAUfH69HxWVbdqdeeTYfr%2FhwGcuzRtezOpkvplTtGBQCVEhW1i8LwqMTPcs%2BvEha1IgYtjFrEIHYsg6vTzqB%2FROWKqEI2nqmVhRSqrzsFXr7YgcLxdaHpjfe52ewzbw0AEyaPAcsXNaw1BSAeN5dO%2FN29p0bK1L9rhbPHhcehpnabNJZU83PlxOO3%2B1LajDr10pSwP0KJLC5cnx7t1Ur%2BnuxVt2jWlWC4Nu%2FXkL%2FRw%3D%3D&use-server-side-rendering=1&pcode-icookie=7qIFjG7HqTSuGfKdseYzwTH0Ipq41oUpix7LLISQ8WcD1o4SP9Ru2ueWfG2OGnlr74tXpqGSkQN3HUv4stDHmZ2Wvzc%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxMDl9ChLCppDkNmYQBupKhe3-denWrU3tcn_fJ_4NzZBEBEdfmpnSc9G3i03-Cb54HNyJU77JfNNzNids-ydY-te1a9d2-M9AXwZwDeKqKqoiqoIPbxpmgre5mYgoDiqIoCrzQeTi-FIuDhcyF6vDo9V2H9A-xO6D9wHRfUByoftiLk73-Vw8H8OX-gJf5KM-JDAeQCjdF3UuzAVatNDh-sgPKBC7j_QAhtEBtPsA4oP63IL6vAEK2JruYJVN9oFNCVtGQkpBCVuugENBKSOTkcopEJXElPCHQUoSuUzRiRUkcjAZ4cjxyQnICGVkRMSMnZyIWCYnloHJyEzqMsJPmQBNDiQgExHAwQ-zoitM6sIs6mJs6nIm4c9b4BLBAVInJ1Xg44PJSEhESCInh60gJiOnfwKAJiMiZKSghEMGlAo9kAkUhIRyggQ4cgUBnA5XQUwchU9_HDwwsJUUlIoUPlBhkZLSk5IRg_aw8AkVxBWeTA5gMnpCAjISBcGD50Pw-T4SF_uJLnoCiLsvfFIhP3lFCygSF7IveDiQus9byCD7qFxsSvjHHcU9-TFcysX20RcMaafvPuZAyIXmi_-1_2Jf-OD87_hc3IeYn4MPsJTwFffWpwP8J2cFgJxw_136Z1VOypgRkIjkgTwqQHxuecctF3I_yizzzx4X231_ihgYKRme96fqg-Pz6R_wpdLxEAQHkI8FgjnnPsTcZw6IkIOgAvB_DOYeq7AdLf-5FnCh3PVg7mUi29Lo6eljPijD0F8i__nl_SWKHytxEtDw5SRkxAoC_AcLxCWnaOmDx4Uyj3D95M7JdZv4cgUBOewHEqhEBCQPcgNwBEuj_MsUcJ_-lLBIc-Dp4cKSyYiIDwhSsgqEglxGBhT5UwqwPkg-xP8QyD4og4ekZM8oLNKMb7gEzyo5ASwSwuH7iULx2IH0_5Ms2bCGdAe7wQL0Xcx_FOMBKJmHIO-_7o24N5sPF-8OUHZh-Ac5IB7WQ77_ODwVdYYybfVO1gHoIcUdfOYtuJIYtcE_tVGXHaQOUDscc2oe6HN3yEfiyswBJ-pHyijZBc8W3ixiZzjaazs8ut85DZ3SQbX6WWnXqFxM2PCmjvLGkraaY0h2mfhy8uvp3qrvIOk3BDXlpmATEcgYKToLaAtbs7eSnklyGHBJichBiwPb8QFCrX4gCAvdBiCP7_mNtrkE5YYa6o2fnfS_JPeVGUxq6qcZF9JDhtXVdBo6EMD7GNoOOgjg1Woq-ucUMN2XzNwdYkB6Yuw9z4zlYnGhPoMYN38geofwp7_rfIQRH_X7fl54AF8Aiq7jHZUkdd49d5CeU9G1dMlOoptdQy_e8dAmzw4Bwe7yMiiY27zu_Ew-hWE8Gw8G_y5C8EQ9pvmH8YvV7dkVXP43b-wfb4_d-2LJ4N1s6Ow5agOugOz8T4XvfUdKCZ_w8XgxHERfqO3bv5GP-PnPjvSSaZ3P3eMs-rfy-xhKH2C3l-18nyUnrJeU44RG6e46Dywdo3OBS49i95iW9q5zAnAFgYJYBnQiEpLfYoD8mjw5NCrG9vz7OQA-bsPYp9yM5y3ZGgnn4K_gR22Yeh_mQvmHQlvaP-DY21Ylg8cPB_07MfYT_U75QJk-upe5JMCrfPwIzv4g3tOp0yj_k7MHG9s_H8JTWHC9rGvcx_AMdDVVb-uOw8W6djSrSDWrSN-DC4SS32i-RHZcgt5p1crdHtfNuc5xy87kHLmQ7M9xB7NGO_QGXH8IxDfA77S33Px9XtLP2ro7dN3ppOVjRQ5OFDm4G-57cDeYeTv5r6pGOyxa4AdXds0kD754Kd-32NwjkDib4dHBo750L_Jh_2eOyE8x3AF05n6btjONca7QW5AffLScHDOG40Sdi7AE4wEX33jFPAIvgJCGgaHSEmRPu7WCNuhQEm7QpvrYGmYILz16On_VcLp9qlFP2vdxyM-12CRh9vy33MvxGupMb9E1XsEeueQBjjZl0jAkugrlZmCh22EDzhJQ8PQ7vMJ72EOGh3bOZ6HZqT_NvbbEe6cgGxi-UOcdAvbDumIFZwEiqOAmrfKolM6py4Q_CcaXXXafN8VtWDuitLOW6Vb7IEXPX9d6Yz0rye77MoI3OCTZL6E_rXHCt99wO3r716K2OMSd_HTxNgdTMNj0s_mwdFiajTRZUOmYuIkmTxP5IUDbnn8n_NS6QS2uzcL503qaoY_GsBHkvZtaiOO1M-PPvBW0O-MfUc2VBg8Kb5mQzJq0g2sT7MqD0D1W8jYSL6VFtVfU92wlavo5yNvIeLtzKK1DpWDyNrWvgxxqLXF15iB9PpD3N1JvoEqmQdQG9-_XJEWvmlqpVZdC1LpA0-1OtEQHL2M4HKYOQoGxAEPbLijYsT0lxj4F1Q2jztjYRYP6YC97h-E4k7Jc6VRqJtvyvzO__gcBfFr-h6pnlpX5PxHjd5Wel_nzbZ17C8A2PgWlElj2MRY8aLUZ9tu0dFFq0Y1-R1cX0LWNkLZPTFvBaPnTLZGaRqsydXaxow9jXjmyzZgLMUt72bGKcoMdqTEk2p2t0PG3k0IvUwOlTbSkZoVUcgX0f_i1a-wd9DPvGkfuyd7nT5hLu1kLi5mqCA1aBeezNrhHjw3281paV3Fqye0WUxzUzEjU5jDWhiyF9hjlzVjp9pdlULK4WmKPe7mt2XCBsPFPaemBi6tI4TLo4uHZf-rQ3RbZvi3ZCOD8SqLvG-YV3bjVTw9tv5-DnrTO3XN9Pv3yh_rjHiUppe6i79awsotshGXYdvJH_Hh5Qd3NSYUbscMrJ1SJUyNJ2N7VHR0uQgbEFrIbAs45T-Cft4-7E5oo0Aa4cL320oKje42YW_QK8n7tjHr1nbc3nyT7VG0-bRErfk2bxq9pew1gq-BNADuPYWOZiWGj75DzBqE0u7FnoGu0mmD8Wgh8jl9H-_OT48KQZcjO5Ghx3BpHkVbyLXdbreDUVFb6TLSVvD2WtGxclEUybmzDXIC3o8lKjDkAcel0m_BJBjMlC0QyMHaEFhq1H4ijaa_YkfjyY1OQI6KDq1qCC_g9osUWU6mf9aokV67-O4fgJK_Ukry7sDl5xfZBzv0J-s5i0VbpZbrXEPgRtCY_6xLNh8pSMiPg31CL0WPNs939uHXloZFoxxnWDJ46v9Ms4Qab-6paX0gTJZR0Im8K-xRHfShur-a5G3mc-SNo4eJ2SccEVr04r9nx5qpKvdg9PNn-2eqPigP1AdIKpzQ5KYvHRh52pI2HHWnp-n4F42L-W1v_DIHHSeAx6_7wagBSTUvHygAk57EoCGka0GLMpT7-V6cpqLk2y3BN2h1jiXw0NitMfVPfikm8XfxLj0tNMTUa7gWotsSueDipsDNolEx3Wg6neyzAhxfNBcKhM7Oxcn44rGs6sLeVH9I0mC2heHl4c4a1O_TnjBCGp2QJYgdm5F6pm3jthKMROMvJJ3UGEGfA55GaNWrHnTN7CpfY3PJuE0Z6TAJlCSaYOYAxNL57KcHhWs8I5yjErar4z0BaIqDHXNw6trlht02zYpqpoj502mhIXq3mMIpOk2yQWl2nPw0Nc33pKgSzBJwFBX7goG7zWqpPBtnayl2nkVmvt9ix1FMgnIynPLnU4-Ht4W8FDzX3qrtouyx-5XcEYVje8rKgwtbXmi38iq1JJZG5P9R2x9xu39TuiBstu-FfwFZXqftlHm4Es45dRbQd_munXFJLlHh-DLbe6JiRLpSoSWEljgeYxpg6jkNrteiF33-acaHVWPpgIPYVPiY-p2vXJFxgdjwWv-ni7mbQF6eFlrcUH9NpKl8ba3G6TykRLXrHC7AkwHp6Xh7aRuZRfhJHpE05Jq2IrxrShPXjp3sRbjacw63GX5yP_Ew6Tuf8Z9X759yW_1Z8Y7g4esekF7v895PluAKCYs_g1VikMG4Qm4eZBNVPiTpB1AfYpfTIC654W0uLdU4sVDCBxzycPfto2wGaeTjGxJpT767VKDUYYKUNJsaLe9KNqlJNLdIZfZDC2DKEcmPLxuBtwS8h-B-2jLHRZtFwLpbVdu-2GzcP1OjNxdgdY9pwR7EfH-KLSoQmB1v7B6z4P7MBdjiC3Ib58lADkzuwsgljfsbwmVFqHKYaLHfsyTc36jXgFiG1IVvQ-WdXKwDTGutvr7JWJg4dpGBN0Jp97ZPAM0Nv8OqYc2Gy2OqYEB8XmZvMWn8ow5sStzV_NPZNIJiaAO-w0oXt7m3u5l9m1-9tAltxl0TwZaIKz-5ldv6BvHKXlvQ9h4Z_1r-umMX4tF129lTuKKfSVNpvOdPNn1Hk8hbEw0aMjRCgIsgz5WQKOQlqYzt-Iyl1GEuMV0xg_32LqnmpAXNQDrFiX4SVVMp8047erNAUOQtNw9XomPkAJqG4L27Vk1nn6jhKpR6RjDPQgvpMyPXvxKFPSgPuSjXrlwSwivWvif9OozT4uxnMyEtgqIj4TB_CGNy279-zEXGLA4Fvz30g2UcLS2RkuXJMTVQXRlTNxWhCYbHqF1NHXrvuifRA0TkjxYd5N4vGzvv8Q1AORKSS2TgeKgo8dGPDNtlf3GPUzH9nMk3sdJQWXaZIZ0fYnAdoyVWEjb5q4JNzky8OjPciTrTOTC8aItvxAe4IN-FC6UV_t8xDmpuv1ciRGTlsHGQZMwsWtTWctVYpJSOui_pXK9w-MOFGXu7qFPaqynamiV6z0k2Ci9em-qZVISfX9PoywEFeoiLf8T3PII4aGReH3oewB3G8Y_53j9x7KKt9JqmVeLPmDdmHXDS5mH5LakzOWZ400nqmDkk0wB0P0EW3R2r7kbyPCMfBcoBhbq0IOdjlpNbU5jdLS_OeqcwWVnSlKAd66W5Lt9ELGmMLK__6FXzFVI-ftFHtYZNbc5k_Fk9j2i4OayrnuBxs5rXRpwbhq-yN7d16IVrVqQ47lvcRMcfywdYbd2uaLDwdnhlxDGd0Rkps-mVi3-Nl1wf-Fum2VDVqW6s6A8pR4xH3xDy-tmTPPP6BFOyGNDMR6l6t4015i1wqeEnaLO1PY5fhd5kshBRMVnNUadVxD00zGGdb3zHO&tga-with-creatives=1
IP 5.255.255.88:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 67a08622d367a88dc07536396c1db563
51baf8b058c0d3af2346d25dd6c14b9167bc87df
bd54eac1e051e31f577760e561a03d2671795de4c62a7ef826037def203e0638
GET /ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&date=2023-02-03T15%3A59%3A40.544%2B00%3A00&pd=3&pdh=1024&pdw=1280&pr1=3110489942&pr=1195864092&prr=&pv=15&pw=5&extid_loader=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=3179561675439980553&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTQzOTk4MDgyNTYxNjUyNA%3D%3D&pcode-test-ids=657519%2C0%2C17%3B706837%2C0%2C31%3B711101%2C0%2C19%3B716040%2C0%2C40%3B714014%2C0%2C9%3B709000%2C0%2C58%3B672577%2C0%2C95%3B715191%2C0%2C90%3B716043%2C0%2C2&pcode-flags-map=eJytWGmP2zYQ%2FSuFPxep7iPfKImyWUuiSlJ2nCAgnKyz62KPYo90myD%2FvUNRtiV5Q8dpgWDj9Woeh3O8eaOvEzKtKMOyJJzjTGZIIFkjhkouc8rkgmSYSlLJlJYJnbx%2B93XyeX39tJm8nmye%2F5r8OnncPDySC%2FjVjy3P9yff3v86WSAuGf6jwVzIRYlqmTNaSpTxgb1gDe4DBHboRFYLgCuUFHh0OHzISUUEBv%2FSOZ9RIZdEzGgjJALfBTd5F%2Fh%2BELlng%2F8fyKgoZM1o1qSCHx9zHjQGyDPz0gNReYEzl5AKWaAEFy0UgCSoqjAzZydwXS%2Fs%2B1LhpeRzsIZ%2FCpCiDDNZF2g1gho7FPlOHO8dIlWNplhyQdL5SmaEK%2FCsjVqiUpvl9A18zXAqJMdFMYDGb%2BohdGg7B%2BiGD72sUFU35lvGdmh5ewAxYxAtzJgKUy55wxZ4BSGHJE4l4bKCMlmggmQnQJ3Aj%2FagKFPRX6m67ZAE1W3S9YwRLLRCLwoPYEUBHtKqWMm6SQqSSlSTNq2QEi6gs81otm35dq9pS7rAkhZgS97iPRGo9v1xD2038qxDwQndFJhxQquBJTzpRPHQFmjEaW2binQl1d6mrPumj%2FdPm56Z50RurI9UOee8reqRzbgOe0YqVhhXkiYcQ4pH5Xu7%2FnC9GVi6gRPrHOTkDVBnJWeYTGdCVsJ8pOe7sQ73ClUZfiNZIzNaIlIZqdUKHTfYn5cwOgdn4Sw5ZaPaG1vaoR8FLx6oWk0wkhjNHdsKdDu8xZUj8wa6ckkyIEZSQtcabT3b6%2Bi8te06WyaUqaQylJGG%2F%2FKDCCuk%2FNYOQ80v0crIyb7nhl2cs1xVLa9pBYUhSImh7wamjmVZQ1vPcvWd65RmWDUpx5WRqH3PB5iulBRfMaxqd3eeVDRlNPfC0Dk2B8qBn0vVRFCdP4OwcwBIqhlky7Veti4wYpUslSJYIEbQ6N7O4FDfsroo14xQRsRKJisYTXhZU2YOWBAGXe%2Ft6qKj%2BJQbh4cPBB31KhJIOEXAzzAo0hSyxA0s4ceub9sD27aK%2BV5H1MDNpJqaQTy%2FY7eUNpWAUharGkvX7DVwtt9LT8lSiBMnCSkgaubj4jD4riUwv0yB9ecnTt9hlE0hiJ72Egg2JzBpibpEjlJzN8eRE4Y9PzoQrUNggEGxqdGfgKxRHSMYLYoTOsByPFdX3ZShxDE%2FCyVqHZ5tx1PfwLcdy%2FT8C51v%2B9%2Bx2BXHDLfjh%2BEMc1DJRv9s3wm0tRIcDOfAOTPQRFOSmu0ityPYVguwUnUQw9Vu7tUMJ2aKD4CjHXvQSjADGdR1Bd00w5APRds8ZWrCcW5kosCObU%2F70zNCda2uMoXWMBs7duwPPJkR0V6jBwbBnAtq9sINHWege9O6lCXOCJIAggRZtEPejBG7w20irdP%2FjDGS9hnOEXTUmare860gGISJl4gJCdKqwQr8VJL8IAgOm5YWqSPPtGalSva2AlXy4oRXoR123Zgq7U2rrgpRrjiO5KAEsRb55nIMoziI91IsZwRgQJ1qe9IW0xn2yfyo1Y8sgtjtarZnce76GoSxZ4V7FJiDmUIozSdHXmCPT9ZFZj7LcTqV22sMpeV%2BqDuiwLPdHWeAJILFEq4KRSNdx9IarZ0JWm4dr3ZHeGHkHt9CTM13gDRFB6sD5XNZwziByQo77wKX45k8%2BfQgH%2B%2BePl6N1i4rcsbLpabdF%2FLYreYnkgNbV9e8ur1gC6ylYO2AOjUygzj23G6HGR6dF1QvV9rREyBR11LfA2krdRie7bO8WT%2FLq8328urxO3CkUpQ8xwlKJGwEJidgnY3CQV9raljOoOR61adWWb2ONjDw2tUb9BgGljS2e2hbXqdsGJN69okGJKSmjTbQLUM109nJTdTTfV%2Bgt6uWaWQrwPtmXyefNo8fr8r1%2FeX2thvhN3cfttcb%2FnF9vb29nLx2vg33SdAtvSLQHAt6XCaFqoSCDLfZd5Ob9fb61f0T%2BPbP%2BvZi8wyff9verC83D4OvLtc37TcXXza3%2BvH15%2B3jnf5486r3y8XttvtWIe8R4Iv79Zfruy9X3Z%2B%2F3Ov%2Fn%2B7Xr243fz8cPfDn%2Bu5m25q%2Bf%2FmK%2FfY9pNacvmBX5wNjVZ%2FoROLB0t4lHmTKQukNrZ93AqYgFSQfkUJpTAoLxejNQUcaw3INInfwmql95bV%2Ff6bypfpo%2FI5txAUfH69HxWVbdqdeeTYfr%2FhwGcuzRtezOpkvplTtGBQCVEhW1i8LwqMTPcs%2BvEha1IgYtjFrEIHYsg6vTzqB%2FROWKqEI2nqmVhRSqrzsFXr7YgcLxdaHpjfe52ewzbw0AEyaPAcsXNaw1BSAeN5dO%2FN29p0bK1L9rhbPHhcehpnabNJZU83PlxOO3%2B1LajDr10pSwP0KJLC5cnx7t1Ur%2BnuxVt2jWlWC4Nu%2FXkL%2FRw%3D%3D&use-server-side-rendering=1&pcode-icookie=7qIFjG7HqTSuGfKdseYzwTH0Ipq41oUpix7LLISQ8WcD1o4SP9Ru2ueWfG2OGnlr74tXpqGSkQN3HUv4stDHmZ2Wvzc%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxMDl9ChLCppDkNmYQBupKhe3-denWrU3tcn_fJ_4NzZBEBEdfmpnSc9G3i03-Cb54HNyJU77JfNNzNids-ydY-te1a9d2-M9AXwZwDeKqKqoiqoIPbxpmgre5mYgoDiqIoCrzQeTi-FIuDhcyF6vDo9V2H9A-xO6D9wHRfUByoftiLk73-Vw8H8OX-gJf5KM-JDAeQCjdF3UuzAVatNDh-sgPKBC7j_QAhtEBtPsA4oP63IL6vAEK2JruYJVN9oFNCVtGQkpBCVuugENBKSOTkcopEJXElPCHQUoSuUzRiRUkcjAZ4cjxyQnICGVkRMSMnZyIWCYnloHJyEzqMsJPmQBNDiQgExHAwQ-zoitM6sIs6mJs6nIm4c9b4BLBAVInJ1Xg44PJSEhESCInh60gJiOnfwKAJiMiZKSghEMGlAo9kAkUhIRyggQ4cgUBnA5XQUwchU9_HDwwsJUUlIoUPlBhkZLSk5IRg_aw8AkVxBWeTA5gMnpCAjISBcGD50Pw-T4SF_uJLnoCiLsvfFIhP3lFCygSF7IveDiQus9byCD7qFxsSvjHHcU9-TFcysX20RcMaafvPuZAyIXmi_-1_2Jf-OD87_hc3IeYn4MPsJTwFffWpwP8J2cFgJxw_136Z1VOypgRkIjkgTwqQHxuecctF3I_yizzzx4X231_ihgYKRme96fqg-Pz6R_wpdLxEAQHkI8FgjnnPsTcZw6IkIOgAvB_DOYeq7AdLf-5FnCh3PVg7mUi29Lo6eljPijD0F8i__nl_SWKHytxEtDw5SRkxAoC_AcLxCWnaOmDx4Uyj3D95M7JdZv4cgUBOewHEqhEBCQPcgNwBEuj_MsUcJ_-lLBIc-Dp4cKSyYiIDwhSsgqEglxGBhT5UwqwPkg-xP8QyD4og4ekZM8oLNKMb7gEzyo5ASwSwuH7iULx2IH0_5Ms2bCGdAe7wQL0Xcx_FOMBKJmHIO-_7o24N5sPF-8OUHZh-Ac5IB7WQ77_ODwVdYYybfVO1gHoIcUdfOYtuJIYtcE_tVGXHaQOUDscc2oe6HN3yEfiyswBJ-pHyijZBc8W3ixiZzjaazs8ut85DZ3SQbX6WWnXqFxM2PCmjvLGkraaY0h2mfhy8uvp3qrvIOk3BDXlpmATEcgYKToLaAtbs7eSnklyGHBJichBiwPb8QFCrX4gCAvdBiCP7_mNtrkE5YYa6o2fnfS_JPeVGUxq6qcZF9JDhtXVdBo6EMD7GNoOOgjg1Woq-ucUMN2XzNwdYkB6Yuw9z4zlYnGhPoMYN38geofwp7_rfIQRH_X7fl54AF8Aiq7jHZUkdd49d5CeU9G1dMlOoptdQy_e8dAmzw4Bwe7yMiiY27zu_Ew-hWE8Gw8G_y5C8EQ9pvmH8YvV7dkVXP43b-wfb4_d-2LJ4N1s6Ow5agOugOz8T4XvfUdKCZ_w8XgxHERfqO3bv5GP-PnPjvSSaZ3P3eMs-rfy-xhKH2C3l-18nyUnrJeU44RG6e46Dywdo3OBS49i95iW9q5zAnAFgYJYBnQiEpLfYoD8mjw5NCrG9vz7OQA-bsPYp9yM5y3ZGgnn4K_gR22Yeh_mQvmHQlvaP-DY21Ylg8cPB_07MfYT_U75QJk-upe5JMCrfPwIzv4g3tOp0yj_k7MHG9s_H8JTWHC9rGvcx_AMdDVVb-uOw8W6djSrSDWrSN-DC4SS32i-RHZcgt5p1crdHtfNuc5xy87kHLmQ7M9xB7NGO_QGXH8IxDfA77S33Px9XtLP2ro7dN3ppOVjRQ5OFDm4G-57cDeYeTv5r6pGOyxa4AdXds0kD754Kd-32NwjkDib4dHBo750L_Jh_2eOyE8x3AF05n6btjONca7QW5AffLScHDOG40Sdi7AE4wEX33jFPAIvgJCGgaHSEmRPu7WCNuhQEm7QpvrYGmYILz16On_VcLp9qlFP2vdxyM-12CRh9vy33MvxGupMb9E1XsEeueQBjjZl0jAkugrlZmCh22EDzhJQ8PQ7vMJ72EOGh3bOZ6HZqT_NvbbEe6cgGxi-UOcdAvbDumIFZwEiqOAmrfKolM6py4Q_CcaXXXafN8VtWDuitLOW6Vb7IEXPX9d6Yz0rye77MoI3OCTZL6E_rXHCt99wO3r716K2OMSd_HTxNgdTMNj0s_mwdFiajTRZUOmYuIkmTxP5IUDbnn8n_NS6QS2uzcL503qaoY_GsBHkvZtaiOO1M-PPvBW0O-MfUc2VBg8Kb5mQzJq0g2sT7MqD0D1W8jYSL6VFtVfU92wlavo5yNvIeLtzKK1DpWDyNrWvgxxqLXF15iB9PpD3N1JvoEqmQdQG9-_XJEWvmlqpVZdC1LpA0-1OtEQHL2M4HKYOQoGxAEPbLijYsT0lxj4F1Q2jztjYRYP6YC97h-E4k7Jc6VRqJtvyvzO__gcBfFr-h6pnlpX5PxHjd5Wel_nzbZ17C8A2PgWlElj2MRY8aLUZ9tu0dFFq0Y1-R1cX0LWNkLZPTFvBaPnTLZGaRqsydXaxow9jXjmyzZgLMUt72bGKcoMdqTEk2p2t0PG3k0IvUwOlTbSkZoVUcgX0f_i1a-wd9DPvGkfuyd7nT5hLu1kLi5mqCA1aBeezNrhHjw3281paV3Fqye0WUxzUzEjU5jDWhiyF9hjlzVjp9pdlULK4WmKPe7mt2XCBsPFPaemBi6tI4TLo4uHZf-rQ3RbZvi3ZCOD8SqLvG-YV3bjVTw9tv5-DnrTO3XN9Pv3yh_rjHiUppe6i79awsotshGXYdvJH_Hh5Qd3NSYUbscMrJ1SJUyNJ2N7VHR0uQgbEFrIbAs45T-Cft4-7E5oo0Aa4cL320oKje42YW_QK8n7tjHr1nbc3nyT7VG0-bRErfk2bxq9pew1gq-BNADuPYWOZiWGj75DzBqE0u7FnoGu0mmD8Wgh8jl9H-_OT48KQZcjO5Ghx3BpHkVbyLXdbreDUVFb6TLSVvD2WtGxclEUybmzDXIC3o8lKjDkAcel0m_BJBjMlC0QyMHaEFhq1H4ijaa_YkfjyY1OQI6KDq1qCC_g9osUWU6mf9aokV67-O4fgJK_Ukry7sDl5xfZBzv0J-s5i0VbpZbrXEPgRtCY_6xLNh8pSMiPg31CL0WPNs939uHXloZFoxxnWDJ46v9Ms4Qab-6paX0gTJZR0Im8K-xRHfShur-a5G3mc-SNo4eJ2SccEVr04r9nx5qpKvdg9PNn-2eqPigP1AdIKpzQ5KYvHRh52pI2HHWnp-n4F42L-W1v_DIHHSeAx6_7wagBSTUvHygAk57EoCGka0GLMpT7-V6cpqLk2y3BN2h1jiXw0NitMfVPfikm8XfxLj0tNMTUa7gWotsSueDipsDNolEx3Wg6neyzAhxfNBcKhM7Oxcn44rGs6sLeVH9I0mC2heHl4c4a1O_TnjBCGp2QJYgdm5F6pm3jthKMROMvJJ3UGEGfA55GaNWrHnTN7CpfY3PJuE0Z6TAJlCSaYOYAxNL57KcHhWs8I5yjErar4z0BaIqDHXNw6trlht02zYpqpoj502mhIXq3mMIpOk2yQWl2nPw0Nc33pKgSzBJwFBX7goG7zWqpPBtnayl2nkVmvt9ix1FMgnIynPLnU4-Ht4W8FDzX3qrtouyx-5XcEYVje8rKgwtbXmi38iq1JJZG5P9R2x9xu39TuiBstu-FfwFZXqftlHm4Es45dRbQd_munXFJLlHh-DLbe6JiRLpSoSWEljgeYxpg6jkNrteiF33-acaHVWPpgIPYVPiY-p2vXJFxgdjwWv-ni7mbQF6eFlrcUH9NpKl8ba3G6TykRLXrHC7AkwHp6Xh7aRuZRfhJHpE05Jq2IrxrShPXjp3sRbjacw63GX5yP_Ew6Tuf8Z9X759yW_1Z8Y7g4esekF7v895PluAKCYs_g1VikMG4Qm4eZBNVPiTpB1AfYpfTIC654W0uLdU4sVDCBxzycPfto2wGaeTjGxJpT767VKDUYYKUNJsaLe9KNqlJNLdIZfZDC2DKEcmPLxuBtwS8h-B-2jLHRZtFwLpbVdu-2GzcP1OjNxdgdY9pwR7EfH-KLSoQmB1v7B6z4P7MBdjiC3Ib58lADkzuwsgljfsbwmVFqHKYaLHfsyTc36jXgFiG1IVvQ-WdXKwDTGutvr7JWJg4dpGBN0Jp97ZPAM0Nv8OqYc2Gy2OqYEB8XmZvMWn8ow5sStzV_NPZNIJiaAO-w0oXt7m3u5l9m1-9tAltxl0TwZaIKz-5ldv6BvHKXlvQ9h4Z_1r-umMX4tF129lTuKKfSVNpvOdPNn1Hk8hbEw0aMjRCgIsgz5WQKOQlqYzt-Iyl1GEuMV0xg_32LqnmpAXNQDrFiX4SVVMp8047erNAUOQtNw9XomPkAJqG4L27Vk1nn6jhKpR6RjDPQgvpMyPXvxKFPSgPuSjXrlwSwivWvif9OozT4uxnMyEtgqIj4TB_CGNy279-zEXGLA4Fvz30g2UcLS2RkuXJMTVQXRlTNxWhCYbHqF1NHXrvuifRA0TkjxYd5N4vGzvv8Q1AORKSS2TgeKgo8dGPDNtlf3GPUzH9nMk3sdJQWXaZIZ0fYnAdoyVWEjb5q4JNzky8OjPciTrTOTC8aItvxAe4IN-FC6UV_t8xDmpuv1ciRGTlsHGQZMwsWtTWctVYpJSOui_pXK9w-MOFGXu7qFPaqynamiV6z0k2Ci9em-qZVISfX9PoywEFeoiLf8T3PII4aGReH3oewB3G8Y_53j9x7KKt9JqmVeLPmDdmHXDS5mH5LakzOWZ400nqmDkk0wB0P0EW3R2r7kbyPCMfBcoBhbq0IOdjlpNbU5jdLS_OeqcwWVnSlKAd66W5Lt9ELGmMLK__6FXzFVI-ftFHtYZNbc5k_Fk9j2i4OayrnuBxs5rXRpwbhq-yN7d16IVrVqQ47lvcRMcfywdYbd2uaLDwdnhlxDGd0Rkps-mVi3-Nl1wf-Fum2VDVqW6s6A8pR4xH3xDy-tmTPPP6BFOyGNDMR6l6t4015i1wqeEnaLO1PY5fhd5kshBRMVnNUadVxD00zGGdb3zHO&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://base.garant.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675439949182987-14045629641437131821-vla1-4706-vla-l7-balancer-8080-BAL-302
last-modified: Fri, 03 Feb 2023 15:59:09 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 03 Feb 2023 15:59:09 GMT
set-cookie: yandexuid=2371318211675439949; Path=/; Domain=.yandex.ru; Expires=Mon, 31-Jan-2033 15:59:09 GMT; SameSite=None; Secure
i=bla7VTLoxTKwoo89Pbcx99VHFdoIdBM2iFuuqXNTiCRMtFewX6YE1jaadjTZMEmRpd9PA1oqjWckOnic/u5EKsqbWn4=; Expires=Sun, 02-Feb-2025 15:59:09 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=2177582791675439949; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:09 GMT; SameSite=None; Secure; HttpOnly
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Fri, 03 Feb 2023 15:59:09 GMT
X-Firefox-Spdy: h2
personalization-web-stable.mindbox.ru/web/visitor/?domain=base.garant.ru
217.28.230.131200 OK 19 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/web/visitor/?domain=base.garant.ru
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 9ebfb55e002094e6ab99483f7bfb2036
e7d5c939f4dd61deb27027a8b197111ef6613f94
2ff17db58315ece5c38400f7fb033905523432a656d8fdbfd8578bdde404a15b
GET /web/visitor/?domain=base.garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-CSRFToken,Authorization
access-control-allow-methods: GET, POST, OPTIONS, PATCH, PUT, DELETE
access-control-allow-origin: https://base.garant.ru
allow: GET, OPTIONS
cache-control: max-age=315360000
content-length: 19
content-type: application/json
date: Fri, 03 Feb 2023 15:59:09 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: nginx/1.23.3
set-cookie: vid=19104625927; expires=Wed, 02 Aug 2023 15:59:09 GMT; Path=/
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6858
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 15:59:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6858
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 15:59:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6858
Expires: Fri, 03 Feb 2023 17:53:27 GMT
Date: Fri, 03 Feb 2023 15:59:09 GMT
Connection: keep-alive
mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A645858370%3Arqn%3A3%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A645858370%3Arqn%3A3%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A645858370%3Arqn%3A3%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 91
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 15:59:09 GMT
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 15:59:09 GMT
last-modified: Fri, 03-Feb-2023 15:59:09 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675439980375%3A1675439980377%3A1%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga;visible=true;_=0.13074719487927133
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675439980375%3A1675439980377%3A1%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga;visible=true;_=0.13074719487927133
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675439980375%3A1675439980377%3A1%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga;visible=true;_=0.13074719487927133 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://base.garant.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:09 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675439949:84008:::; path=/; expires=Sun, 04-Feb-24 15:59:09 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A981615740%3Arqn%3A2%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A981615740%3Arqn%3A2%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&hittoken=1675439949_437c8fe602eccbb28b5cc9ba7149ac574925c40882ffb2a458c8b90192230f84&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439981%3Ac%3A1%3Arn%3A981615740%3Arqn%3A2%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675439978397%3Aadb%3A2%3Ast%3A1675439981&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 15:59:09 GMT
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 15:59:09 GMT
last-modified: Fri, 03-Feb-2023 15:59:09 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T-OEFTj1rywKfBhEUUD0Rc6pFbk-gyFsETr_fjDQR5WGHAVOBgrB9A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 19:18:01 GMT
age: 74468
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 63076
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 39948
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 63019
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:55:01 GMT
age: 65048
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 56045
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 15:59:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 6ed4d3701f3c8246e16ee25b53f2746a
3df0c343038c95cf49c50da609eb21afddce1a83
b67f4a86adb54804a69e721549a4f94a3dfc162e0c20738d7385429240a3f444
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:05:37 GMT
ETag: "3df0c343038c95cf49c50da609eb21afddce1a83"
Last-Modified: Fri, 03 Feb 2023 13:05:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 256
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f45d926b4ed-OSL
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1082005060.1675439980&jid=1593535670&_u=IEBAAEAAAAAAACAAI~&z=1403444291 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 15:59:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
moevideo.biz/embed/core/version?jsonp=&jsonpCallback=jsonp_1675439981233_2297
92.38.138.83200 OK 44 B URL HTTP/1.1 moevideo.biz/embed/core/version?jsonp=&jsonpCallback=jsonp_1675439981233_2297
IP 92.38.138.83:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with no line terminators
Hash 7ab4c5fa230d4f98f8c1480ce3eb15c6
201cec7bf266d8d3d25250d62a7186507ca9dcab
47383d30918bee20816549d64033ed716d8a956e56a91d214c456728fb9f4f63
GET /embed/core/version?jsonp=&jsonpCallback=jsonp_1675439981233_2297 HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: application/javascript
Content-Length: 44
Connection: keep-alive
X-My-Reqtime: 0.022
ads.adfox.ru/285002/event?pm=cyz&hash=120b0ffead159206&duid=1675439980825616524&p5=kzvnf&rand=idwheio&sj=14-ejUWo231UNHTlcIAiZxWkJiWcmZdQzCUeHdRfQEllWfYDH_PGoW9v-Vkm&ad-session-id=3179561675439980553<s=flajlmb&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&pr=dwqxpsu&p1=cskmi&rqs=AAAAAAAAAABNL91jRMQqvMi8R-s6yON2&p2=hmni
77.88.21.179204 No Content 0 B URL HTTP/2 ads.adfox.ru/285002/event?pm=cyz&hash=120b0ffead159206&duid=1675439980825616524&p5=kzvnf&rand=idwheio&sj=14-ejUWo231UNHTlcIAiZxWkJiWcmZdQzCUeHdRfQEllWfYDH_PGoW9v-Vkm&ad-session-id=3179561675439980553<s=flajlmb&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&pr=dwqxpsu&p1=cskmi&rqs=AAAAAAAAAABNL91jRMQqvMi8R-s6yON2&p2=hmni
IP 77.88.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /285002/event?pm=cyz&hash=120b0ffead159206&duid=1675439980825616524&p5=kzvnf&rand=idwheio&sj=14-ejUWo231UNHTlcIAiZxWkJiWcmZdQzCUeHdRfQEllWfYDH_PGoW9v-Vkm&ad-session-id=3179561675439980553<s=flajlmb&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&pr=dwqxpsu&p1=cskmi&rqs=AAAAAAAAAABNL91jRMQqvMi8R-s6yON2&p2=hmni HTTP/1.1
Host: ads.adfox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
timing-allow-origin: *
date: Fri, 03 Feb 2023 15:59:09 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
pragma: no-cache
expires: Mon, 04 Dec 1999 21:29:02 GMT
last-modified: Fri, 03 Feb 2023 15:59:09 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0
X-Firefox-Spdy: h2
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&u_s=(direct)
217.28.230.131200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&u_s=(direct)
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Fri, 03 Feb 2023 15:59:09 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
moevideo.biz/native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream=
92.38.138.83200 OK 23 kB URL HTTP/1.1 moevideo.biz/native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream=
IP 92.38.138.83:0
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55790)
Hash 31b038da0d0d4b610f7da0e64634ff1b
798ad22161d98ae0ac35caca53a3988b60ce20b8
1c784dfcfed4d78fd75644110a58137f5c183dc7ae8ff0e45d50ccba9a813b52
GET /native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream= HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.38
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791;expires=Sat, 03-Feb-2024 18:59:09 GMT;Max-Age=31536000;path=/;SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24;path=/;SameSite=None
X-My-Adv-Time: 0.00403118133545
Expires: Thu, 19 Feb 1998 13:24:18 GMT
Last-Modified: Fri, 03 Feb 2023 15:59:09 GMT
Cache-Control: max-age=0
Pragma: no-cache
X-Mv-TryCache: 0
X-My-App-Time: 0.016
X-Mv-Embed-Version: 1414
X-My-Name: s202
Content-Encoding: gzip
X-My-Reqtime: 0.043
Access-Control-Allow-Origin: *
moevideo.biz/embed/player/1860/skins/gray/styles.css
92.38.138.83200 OK 15 kB URL HTTP/1.1 moevideo.biz/embed/player/1860/skins/gray/styles.css
IP 92.38.138.83:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (55711), with no line terminators
Hash 15f05cb8a429eab68ddf1978a3576c75
4089aa0da3d02c93fe296e403f86f60fdf12d426
cb55fcbae8d7718802f63db880c3f4b4cb1bd70cb7f1f476c3da7fe1fc8fdd28
GET /embed/player/1860/skins/gray/styles.css HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:03:25 GMT
Vary: Accept-Encoding
ETag: W/"63d27a1d-d99f"
X-My-Name: s145
Content-Encoding: gzip
X-My-Reqtime: 0.027
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 17cc3f8e5cd1b971874ef9654caf8c89
39b28e68786cfa6d4aa22cd341d9e11c50f09b18
23fd973e52869f00dc81053f11a7d987d250b8c52adb4552a76ab4176b283289
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:44:35 GMT
ETag: "39b28e68786cfa6d4aa22cd341d9e11c50f09b18"
Last-Modified: Fri, 03 Feb 2023 14:44:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2970
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f48490d0b59-OSL
api.mindbox.ru/v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru
84.252.130.113200 OK 123 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 482f55412896a171a8a85eb04b77b478
722a32e83e0870b59f08703e6c029f35cfd4696d
975f6d09fd4b90482e6a0e7b327eb1151d20956010155bada5f11cbd5b22263d
POST /v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 408
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 123
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/json; charset=utf-8
date: Fri, 03 Feb 2023 15:59:09 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 2b1a26894029dc770a0a97e321a9146c
6dcf876fc72fcb38346288d89f941482db16c2bf
0151f86577bd325f3e823d4f4e6433c1cbd5f7655379cce286c79b3fb927d90c
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:29:49 GMT
ETag: "6dcf876fc72fcb38346288d89f941482db16c2bf"
Last-Modified: Fri, 03 Feb 2023 13:29:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2970
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f486d280b02-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash c6b8b16d97b75e16df3295955d400280
cd3c5f0b105d2ab137133bb7e7edc4ca5fdc7934
fe9b3edfebfe1192874398ed05840e7cc749fd75fb98b812304fc43209e55678
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:32:13 GMT
ETag: "cd3c5f0b105d2ab137133bb7e7edc4ca5fdc7934"
Last-Modified: Fri, 03 Feb 2023 13:32:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2970
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f48693f0b59-OSL
moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
92.38.138.83200 OK 0 B URL HTTP/1.1 moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
IP 92.38.138.83:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}] HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791; Path=/; Expires=Sat, 03 Feb 2024 15:59:10 GMT; Secure; SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
playreplay.me/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
92.38.138.49200 OK 0 B URL HTTP/1.1 playreplay.me/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
IP 92.38.138.49:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}] HTTP/1.1
Host: playreplay.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791; Path=/; Expires=Sat, 03 Feb 2024 15:59:10 GMT; Secure; SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
thesame.tv/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
92.223.103.208200 OK 0 B URL HTTP/1.1 thesame.tv/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
IP 92.223.103.208:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}] HTTP/1.1
Host: thesame.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791; Path=/; Expires=Sat, 03 Feb 2024 15:59:10 GMT; Secure; SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
cs-0.moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
5.188.150.189200 OK 0 B URL HTTP/1.1 cs-0.moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}] HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791; Path=/; Expires=Sat, 03 Feb 2024 15:59:10 GMT; Secure; SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.001
playreplay.net/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
5.188.150.126200 OK 0 B URL HTTP/1.1 playreplay.net/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}]
IP 5.188.150.126:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%221bd4a7e8f10cceb1e791%22},{%22key%22:%22mvsid%22,%22value%22:%224ae70689-10d1-487b-8a3e-167e5dc19b24%22}] HTTP/1.1
Host: playreplay.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=1bd4a7e8f10cceb1e791; Path=/; Expires=Sat, 03 Feb 2024 15:59:10 GMT; Secure; SameSite=None
mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.002
moevideo.biz/embed/player/1860/mvplayer.min.js
92.38.138.83200 OK 155 kB URL HTTP/1.1 moevideo.biz/embed/player/1860/mvplayer.min.js
IP 92.38.138.83:0
ASN #199524 G-Core Labs S.A.
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Size 155 kB (154785 bytes)
Hash b101f10bb9c69aa7c7b726234a4a2ee0
ad5a9031471d00375ceb47e76f35eaac26904f90
e6ef2f048c13d79e27a5c0cf0eb3a43fc63001ce098f0829d51c5abeb2b03017
GET /embed/player/1860/mvplayer.min.js HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-1056&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-&instream=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:11:55 GMT
Vary: Accept-Encoding
ETag: W/"63d27c1b-954a5"
X-My-Name: s146
Content-Encoding: gzip
X-My-Reqtime: 0.026
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
217.28.230.131200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Fri, 03 Feb 2023 15:59:09 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru
84.252.130.113200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Fri, 03 Feb 2023 15:59:10 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 269404
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 185695
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
185.178.208.73200 OK 18 kB URL HTTP/2 base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
IP 185.178.208.73:0
Hash 900bc31a6daba6563fe469fe4edc4731
a37b8b16a5a0bbe512f0a12c3d155d6e4a1af815
2920e5f10551b6748a2b3f497b86390ced8e38ee4bc853c496a62f1c61081439
GET /10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/ HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 15:59:07 GMT
content-type: text/html; charset=windows-1251
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 03 Feb 2023 15:59:07 GMT
pragma: no-cache
set-cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; Domain=.garant.ru; HttpOnly; Path=/; Expires=Sat, 03-Feb-2024 15:59:07 GMT
garantId=b0973bdea3db11ed9f5fb88303828b09; expires=Wed, 02-Feb-2028 15:59:07 GMT; Max-Age=157680000; path=/; domain=.garant.ru
attnq=URsnIDEwc3V8dgBKdHUlJTYgd3YCS3R3cXc%3D; path=/10900200/; HttpOnly
cache-control: private, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
217.28.230.131200 OK 1.1 kB URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type gzip compressed data, max compression\012- data
Hash 8257e5965b12b2c1c981b9f74aab0e70
c4818c2c29322681d046aa182a49aaa95e546a75
f89104083b73fdb0c9ae83c641bc2362f099b46740f8996d90034cbd31edba4f
GET /web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Fri, 03 Feb 2023 15:59:10 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
moe.video/storage.html?v=08
92.223.103.202200 OK 6.2 kB URL HTTP/1.1 moe.video/storage.html?v=08
IP 92.223.103.202:0
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18280)
Hash c8463eda7aa61bb390914cb97c775acc
273c4ebc3be11427eef2ddeb8d006cc32ebc9cf3
f2546cd3d25f9c6a05a755ed6eab66b5e34129517937a58d99db1c64acf161ac
GET /storage.html?v=08 HTTP/1.1
Host: moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:15:06 GMT
Vary: Accept-Encoding
ETag: W/"63d27cda-4783"
X-My-Name: s168
Content-Encoding: gzip
X-My-Reqtime: 0.023
X-B-Name: f33
top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675439978397/////325/370/370/370/497/400/497/675/687/688/1092/1162/1184/3916/3916/;ni=;lvid=1675439980375%3A1675439982316%3A2%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.25199738276985206;e=RT/load;et=1675439982315
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675439978397/////325/370/370/370/497/400/497/675/687/688/1092/1162/1184/3916/3916/;ni=;lvid=1675439980375%3A1675439982316%3A2%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.25199738276985206;e=RT/load;et=1675439982315
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675439978397/////325/370/370/370/497/400/497/675/687/688/1092/1162/1184/3916/3916/;ni=;lvid=1675439980375%3A1675439982316%3A2%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.25199738276985206;e=RT/load;et=1675439982315 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:10 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675439950:84008:::; path=/; expires=Sun, 04-Feb-24 15:59:10 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
am-0.moevideo.biz/ssp/auction_multi
83.229.25.72204 No Content 0 B URL HTTP/1.1 am-0.moevideo.biz/ssp/auction_multi
IP 83.229.25.72:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ssp/auction_multi HTTP/1.1
Host: am-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://moevideo.biz/
Origin: https://moevideo.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, POST, OPTIONS
am-0.moevideo.biz/ssp/auction_multi
83.229.25.72200 OK 2 B URL HTTP/1.1 am-0.moevideo.biz/ssp/auction_multi
IP 83.229.25.72:0
ASN #199524 G-Core Labs S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /ssp/auction_multi HTTP/1.1
Host: am-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Content-Type: application/json
Origin: https://moevideo.biz
Content-Length: 4647
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://moevideo.biz
Cache-Control: no-cache, must-revalidate;post-check=0,pre-check=0;max-age=0
Expires: Thu, 19 Feb 1998 13:24:18 GMT
Last-Modified: Fri, 03 Feb 2023 15:59:11 GMT
Pragma: no-cache
X-Balancer-Name: fvm11
X-B-Name: fvm11
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c26a5b2867f8f53d8b0c163fe24fdc9
a38fbf22fe7d65693c45ffd1f547871ba7321dd5
ecc618bb22bdf99f2c606fa48c65af2a2989141b4f9b7a6788bc4ccabdc04e49
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECC618BB22BDF99F2C606FA48C65AF2A2989141B4F9B7A6788BC4CCABDC04E49"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17370
Expires: Fri, 03 Feb 2023 20:48:41 GMT
Date: Fri, 03 Feb 2023 15:59:11 GMT
Connection: keep-alive
sync.bumlam.com/?src=moe2&uid=1bd4a7e8f10cceb1e791
31.172.81.159302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=moe2&uid=1bd4a7e8f10cceb1e791
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=moe2&uid=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRiMmUyMTc3Ni1hM2RiLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Thu, 29 Jan 2043 15:59:11 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=moe2&s_data=CAIQARjP3vSeBmIUMWJkNGE3ZThmMTBjY2ViMWU3OTGiARCy4hd2o9sR7aHEACWQyCQ3
ETag: b2e21776-a3db-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash f3c150a6529699b40d39a859b83b2934
43f397871489a09201515d6ad281c177ce362e2a
94ca0a6fbdb9f40cc7cbbe9b06986ba2520e318cc85552559701558d2988917f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:35:46 GMT
ETag: "43f397871489a09201515d6ad281c177ce362e2a"
Last-Modified: Fri, 03 Feb 2023 14:35:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 923
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f4f793f0b59-OSL
dm-eu.hybrid.ai/match?id=117
37.18.103.22302 Found 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=117
IP 37.18.103.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=117 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 15:59:11 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://cs-0.moevideo.biz/ssp/cs?d=21&b=b242711f3477de565844
set-cookie: vid=b242711f3477de565844; Expires=Sat, 03 Feb 2024 15:59:09 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 512
x-xss-protection: 1; mode=block
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08ffbd617e3c4fe6363eac8207df7517
9e609b37c80b441d84d4bc50b28679f40bf87d2d
00f9131e6fd8f03c2f2a9bdf857c64a366587907d39826e6b7df365257de63e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00F9131E6FD8F03C2F2A9BDF857C64A366587907D39826E6B7DF365257DE63E6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5350
Expires: Fri, 03 Feb 2023 17:28:21 GMT
Date: Fri, 03 Feb 2023 15:59:11 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 263c9c48dd6fa09e1295a1a50d9024fe
7d959f2ef883f119ec8d7ffb2eedead65695d07c
2d35e0a4cee2ee4630e535710f39f8025c5cabe16ad3882cf676eaa7e0d11e30
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:57:54 GMT
ETag: "7d959f2ef883f119ec8d7ffb2eedead65695d07c"
Last-Modified: Fri, 03 Feb 2023 13:57:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3114
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f4fabf40b02-OSL
sync.bumlam.com/?src=moe2&s_data=CAIQARjP3vSeBmIUMWJkNGE3ZThmMTBjY2ViMWU3OTGiARCy4hd2o9sR7aHEACWQyCQ3
31.172.81.159200 OK 43 B URL HTTP/1.1 sync.bumlam.com/?src=moe2&s_data=CAIQARjP3vSeBmIUMWJkNGE3ZThmMTBjY2ViMWU3OTGiARCy4hd2o9sR7aHEACWQyCQ3
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=moe2&s_data=CAIQARjP3vSeBmIUMWJkNGE3ZThmMTBjY2ViMWU3OTGiARCy4hd2o9sR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: suuid3=IiRiMmUyMTc3Ni1hM2RiLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: suuid3=IiRiMmUyMTc3Ni1hM2RiLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Thu, 29 Jan 2043 15:59:11 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ad50fd429d43590d1ef8635ee01498ea
f0917fd3a14ea4f5b1e97dcd534338c5ff06c8af
50edbb5e017eb9381fccaf770b4fc5dc94e970ea2631eec51e180ac69d59a70b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 15:41:07 GMT
Expires: Tue, 07 Feb 2023 15:41:06 GMT
Etag: "f0917fd3a14ea4f5b1e97dcd534338c5ff06c8af"
Cache-Control: max-age=343914,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793c5f4f7ab0b529-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash ff574c8792604249ef08bac21f903d3e
c1e82e2bc893a2881373a9d0cc91d4c779b3ff8e
2248d91afacab282c473d93501455207afa87fcca3f69fe1b1fc2c34b1c0d0dc
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:00:11 GMT
ETag: "c1e82e2bc893a2881373a9d0cc91d4c779b3ff8e"
Last-Modified: Fri, 03 Feb 2023 12:00:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3371
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f4fbe8ab4ed-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48a32825eb7d2ee0b5a0e98357b67f28
fdf1f8ba8e52dec8ad187f65bb3133aeadbaed52
bae3ab933277d23d6eab090cb9be1352558f1ccf570c105079bb6c277fd55f39
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BAE3AB933277D23D6EAB090CB9BE1352558F1CCF570C105079BB6C277FD55F39"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Fri, 03 Feb 2023 17:48:07 GMT
Date: Fri, 03 Feb 2023 15:59:11 GMT
Connection: keep-alive
sync.dmp.otm-r.com/match/moevideo
138.201.65.66204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/moevideo
IP 138.201.65.66:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/moevideo HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.19.7
date: Fri, 03 Feb 2023 15:59:11 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=21&b=b242711f3477de565844
5.188.150.189307 Temporary Redirect 0 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=21&b=b242711f3477de565844
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/cs?d=21&b=b242711f3477de565844 HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=1bd4a7e8f10cceb1e791; mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
Location: https://rtb.moe.video/cs?d=3&b=b242711f3477de565844
Access-Control-Allow-Origin: *
exchange.buzzoola.com/cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D
167.235.33.113301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D
IP 167.235.33.113:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 23f6a4d4abde218e33a3f4d6e0b07ad4
853706cf0292e8a7be379eba53cb99efd6b0ee10
91980f033016c422f50bb0443ed3d5fbccac308bac5939c3a7d5cf8776222b51
GET /cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://cs-0.moevideo.biz/ssp/cs?d=81&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
serverid: TODO
X-Firefox-Spdy: h2
ad.mail.ru/static/ads-async.js
95.163.41.56200 OK 168 B URL HTTP/2 ad.mail.ru/static/ads-async.js
IP 95.163.41.56:0
Hash ef237b1a0868f46c3ad6d2aa76387987
bf1641fc7114fd8413abbadcc539e1a8af5df518
bb9df30637adf6bf0629a90aa5b1fd5b76f6ff7e332363355d5fa00a6e87b0a5
GET /static/ads-async.js HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: application/javascript;charset=UTF-8
expires: Fri, 03 Feb 2023 16:09:11 GMT
cache-control: max-age=600
access-control-allow-origin: *
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/moevideo_direct_ssp?id=1bd4a7e8f10cceb1e791
185.40.31.214200 OK 43 B URL HTTP/2 sync.dsp.solta.io/match/moevideo_direct_ssp?id=1bd4a7e8f10cceb1e791
IP 185.40.31.214:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/moevideo_direct_ssp?id=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=moevideo&id=1bd4a7e8f10cceb1e791
217.65.2.150302 Found 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=moevideo&id=1bd4a7e8f10cceb1e791
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=moevideo&id=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
Location: https://cs-0.moevideo.biz/ssp/cs?d=111&b==
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 1bc0e971bc4662fe9e2f1776d7737325
8e1d5d3439a661f4d983593ef870cdbac5ca5994
9cfae8890ec590a08096df03efb09f2121e581117dc7c9cd961103f1994e4878
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:20:42 GMT
ETag: "8e1d5d3439a661f4d983593ef870cdbac5ca5994"
Last-Modified: Fri, 03 Feb 2023 12:20:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3114
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f502a180b59-OSL
sync.upravel.com/moevideo/sync
148.251.129.43302 Found 0 B URL HTTP/2 sync.upravel.com/moevideo/sync
IP 148.251.129.43:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /moevideo/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
set-cookie: session_tptc=1675439951380;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675439951380;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=81&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
5.188.150.189307 Temporary Redirect 0 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=81&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/cs?d=81&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5 HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=1bd4a7e8f10cceb1e791; mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
Location: https://rtb.moe.video/cs?d=8&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
Access-Control-Allow-Origin: *
sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
148.251.129.43302 Found 0 B URL HTTP/2 sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
IP 148.251.129.43:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: session_tptc=1675439951380
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=9009125c-ded4-429e-9aeb-06e6fbaadd60;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=9009125c-ded4-429e-9aeb-06e6fbaadd60;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://cs-0.moevideo.biz/ssp/cs?d=91&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=111&b==
5.188.150.189403 Forbidden 146 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=111&b==
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /ssp/cs?d=111&b== HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=1bd4a7e8f10cceb1e791; mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
kimberlite.io/rtb/sync/moevideo?u=1bd4a7e8f10cceb1e791
80.78.249.201307 Temporary Redirect 0 B URL HTTP/1.1 kimberlite.io/rtb/sync/moevideo?u=1bd4a7e8f10cceb1e791
IP 80.78.249.201:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/moevideo?u=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Y90vT2PjrGw~-O41xpjrEh5Md01HKNl32B6Rk8I; path=/; max-age=7776000; samesite=none; httponly; secure
f=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D201%26b%3DY90vT2PjrGw; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw
referrer-policy: no-referrer
server-timing: app;srv=3;dur=0.0002
rtb.com.ru/myvideo-sync?uid=1bd4a7e8f10cceb1e791
83.222.114.189204 No Content 0 B URL HTTP/1.1 rtb.com.ru/myvideo-sync?uid=1bd4a7e8f10cceb1e791
IP 83.222.114.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myvideo-sync?uid=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: rtb.com.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Fri, 03 Feb 2023 15:59:11 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
P3p: CP="rtb.com.ru does not have a P3P policy"
r.mradx.net/img/B4/8C21C3.js
95.163.52.80200 OK 58 kB URL HTTP/1.1 r.mradx.net/img/B4/8C21C3.js
IP 95.163.52.80:0
File type Unicode text, UTF-8 text, with very long lines (33918), with NEL line terminators
Hash c998ba06b6d15d5d5976001a0f69695d
f9cce7423db11057eb42e22ee71fb615edd3f141
0598b376978e9cb9470e8a0d068e8b2ab29f314bc280f88cdf08ae83fa48e615
GET /img/B4/8C21C3.js HTTP/1.1
Host: r.mradx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 18 Jan 2023 14:45:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63c805ee-2f858"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip
sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw
185.40.31.214302 Found 0 B URL HTTP/2 sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw
IP 185.40.31.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/kimberlite?id=Y90vT2PjrGw HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-length: 0
location: https://sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=91&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
5.188.150.189307 Temporary Redirect 0 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=91&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/cs?d=91&b=9009125c-ded4-429e-9aeb-06e6fbaadd60 HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=1bd4a7e8f10cceb1e791; mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
Location: https://rtb.moe.video/cs?d=9&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
Access-Control-Allow-Origin: *
sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw&chk=1
185.40.31.214302 Found 0 B URL HTTP/2 sync.dsp.solta.io/match/kimberlite?id=Y90vT2PjrGw&chk=1
IP 185.40.31.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/kimberlite?id=Y90vT2PjrGw&chk=1 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/iage?u=NGI3NjBjMTZiZmMxZWQ3NA
set-cookie: pid=NGI3NjBjMTZiZmMxZWQ3NA; expires=Sat, 03 Aug 2024 15:59:11 GMT; domain=.dsp.solta.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru
84.252.130.113200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Fri, 03 Feb 2023 15:59:11 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
217.28.230.131200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct)
IP 217.28.230.131:0
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19104625927&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Fri, 03 Feb 2023 15:59:10 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru
84.252.130.113200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 170
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Fri, 03 Feb 2023 15:59:10 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ad.mail.ru/dist/vkAuth.html
95.163.41.56200 OK 523 B URL HTTP/2 ad.mail.ru/dist/vkAuth.html
IP 95.163.41.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 230cf79591a418fd05597bbdfded6703
5c7b9904b1a7e338ede3ab0e8ee73decd05a2902
ed75109404e5ed7750f964bfe12245ad0d67cd4fb6d2d4138ee094d322477c82
GET /dist/vkAuth.html HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: text/html;charset=UTF-8
content-length: 523
expires: Fri, 03 Feb 2023 16:09:11 GMT
cache-control: max-age=600
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/iage?u=NGI3NjBjMTZiZmMxZWQ3NA
80.78.249.201307 Temporary Redirect 0 B URL HTTP/1.1 kimberlite.io/rtb/sync/iage?u=NGI3NjBjMTZiZmMxZWQ3NA
IP 80.78.249.201:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/iage?u=NGI3NjBjMTZiZmMxZWQ3NA HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: f=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D201%26b%3DY90vT2PjrGw; n=1; u=Y90vT2PjrGw~-O41xpjrEh5Md01HKNl32B6Rk8I
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: n=2; max-age=30; samesite=none; httponly; secure
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D
referrer-policy: no-referrer
server-timing: app;srv=3;dur=0.0003
static.popmechanic.io/media/popmechanic/tns.js?2
51.250.101.167200 OK 13 kB URL HTTP/1.1 static.popmechanic.io/media/popmechanic/tns.js?2
IP 51.250.101.167:0
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (31830)
Hash 77a44d22cfd86a6506bdf0af1e6d222a
9b86741f87c3cdae7676778455706240d0b93153
57cd16bf669af4f99973f763e3403af9d38a91855dd28e366265e8aade8b6053
GET /media/popmechanic/tns.js?2 HTTP/1.1
Host: static.popmechanic.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/javascript
Last-Modified: Wed, 05 Oct 2022 15:44:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"633da65b-7c57"
Expires: Sat, 04 Feb 2023 15:59:11 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS, PATCH, PUT
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-CSRFToken,Authorization
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash bbb244f25bfa75617faad8da85d9e04b
2750c996d4644e5f36ce1bfb8801f21254b9e096
bb03f677f1f6356ff3d1f4e606ffc6073108b8c19b817ffd9469eb79aa0af0c9
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:31:38 GMT
ETag: "2750c996d4644e5f36ce1bfb8801f21254b9e096"
Last-Modified: Fri, 03 Feb 2023 13:31:39 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 289
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f52bf320b02-OSL
vk.com/js/api/openapi.js?169
87.240.132.67200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?169
IP 87.240.132.67:0
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?169 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Fri, 03 Feb 2023 15:59:11 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Tue, 07 Feb 2023 15:59:11 GMT
cache-control: max-age=345600
x-frontend: front220007
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash ce02a8eb2590721c5da9e4c2b35d6e72
2c0bf91bdf0d3ac5f85d3a9913ef2031a23b9f1a
a08f08ed9d42644c9a1f616e569d7ec80076c4e98abfc054f2ed729a315ad262
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:05:24 GMT
ETag: "2c0bf91bdf0d3ac5f85d3a9913ef2031a23b9f1a"
Last-Modified: Fri, 03 Feb 2023 13:05:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1944
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f5418920b02-OSL
login.vk.com/?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1
87.240.129.181200 OK 41 B URL HTTP/2 login.vk.com/?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1
IP 87.240.129.181:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fe2928ef72334b54996468305941b6d3
c1c2247ce581b554ac4885c727f60aadd1f0a579
8fe67611920af9283fa32df81946e0053d5f2bef65e74e4f193ce5fb24a6c7db
GET /?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1 HTTP/1.1
Host: login.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ad.mail.ru
Connection: keep-alive
Referer: https://ad.mail.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Fri, 03 Feb 2023 15:59:12 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.113240
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Wed, 07 Feb 2024 01:19:31 GMT; path=/; domain=.vk.com
remixstlid=9105666747852407317_gUmmGpPDsxLZwQdDvCuOrtagrf7LFZHP0ezGH2MoQKP; expires=Sat, 03 Feb 2024 15:59:12 GMT; path=/; domain=.vk.com; secure
remixlns=c18e3c2b278f59934d; expires=Fri, 03 Feb 2023 15:59:42 GMT; path=/; domain=.vk.com; secure
remixdmgr=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure
remixdmgr_tmp=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-methods: GET
access-control-allow-credentials: true
access-control-allow-origin: https://ad.mail.ru
content-encoding: gzip
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 5da175a3c2a07e1c0ad77e5b420c36a7
155b9ba4620c46c6164afd4e25a0a50399899df3
3dbb343703284f9865c71494984300bc3b871e813c10547be549c1cc0fec00bd
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:19:47 GMT
ETag: "155b9ba4620c46c6164afd4e25a0a50399899df3"
Last-Modified: Fri, 03 Feb 2023 12:19:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3519
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f54ade1b4ed-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570
195.209.108.50302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570
IP 195.209.108.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4901171654; expires=Sun, 02 Feb 2025 15:59:12 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-4901171654
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
yandex.ru/ads/system/adsdk.js
5.255.255.88200 OK 24 kB URL HTTP/2 yandex.ru/ads/system/adsdk.js
IP 5.255.255.88:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2799a8d15803574334ef9dcfb9779699
8e733872fc96dd0b8665cf5ce8342abc454fd51d
be05acb91dbc5a051366cd63395c6e9ff57bf0a33d7a2870bc8e6ff5846cf637
GET /ads/system/adsdk.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=803qB7REf5C1xIQCFVd15gsdJXuVZeJ9EUyLGwCfKKN4jZsRRvX1RGVCQbDRRqsnOXEYReowVfzEnt+gEzZvrvgtr1E=; Expires=Sun, 02-Feb-2025 15:59:12 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=6695604801675439952; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:12 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 03 Feb 2023 16:59:12 GMT
x-yandex-req-id: 1675439952038222-3846576469039734170-vla1-4706-vla-l7-balancer-8080-BAL-2159
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ocsp.usertrust.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 51ab5a8626b70c7594e57366f659f93d
b306da2759928ddd7895083be1196fae9f634197
2eb603282049d073ffcd2928301736eb6d72e02c0ea9e4a884e103c73debd5de
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:18:21 GMT
Expires: Thu, 09 Feb 2023 16:18:20 GMT
Etag: "b306da2759928ddd7895083be1196fae9f634197"
Cache-Control: max-age=604041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1002
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f550f20b50b-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash ec440af50f94efc355e06bca95f50368
73135ccda0e4b600104a87d2cd46bd5ef3261dc7
b43f3f7e0164de4360d29d0422c916d5c9ae74e0a5ef04cef1bb4239f5426a63
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 12:53:05 GMT
ETag: "73135ccda0e4b600104a87d2cd46bd5ef3261dc7"
Last-Modified: Fri, 03 Feb 2023 12:53:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1244
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f552e8db4ed-OSL
dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-1056%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-%26instream%3D
34.111.205.194307 Temporary Redirect 0 B URL HTTP/2 dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-1056%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-%26instream%3D
IP 34.111.205.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-1056%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-%26instream%3D HTTP/1.1
Host: dx.frontend.weborama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Fri, 03 Feb 2023 15:59:11 GMT
content-length: 0
location: https://dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-1056%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC85ZDg5YmE2ZTNlNjMzYjBkYWMxYThjYWY1YTVhODFkMy8-%26instream%3D&bounce=1&random=3838469716
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Fri, 03 Feb 2023 15:59:12 GMT
set-cookie: wui=E23B47DA-881D-4E08-8FCC-EC8D47ADDA39; expires=Sat, 02 Mar 2024 15:59:12 GMT; domain=.weborama.com; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 23723ddfa405a70ea14916ae4e549587
ecae9f206a6f99910ec6d5af5070733e6245b300
b9cacc73575601d44dfc6f9fefb2997dc7a83456e5f371bd247e1b4b51851c88
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 15:59:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 22:31:36 GMT
Expires: Fri, 03 Feb 2023 22:31:36 GMT
ETag: "ecae9f206a6f99910ec6d5af5070733e6245b300"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-4901171654
195.209.108.50200 OK 42 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-4901171654
IP 195.209.108.50:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-4901171654 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Sun, 02 Feb 2025 15:59:12 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
moevideo-sync.rutarget.ru/sync
87.242.93.112302 Moved Temporarily 0 B URL HTTP/1.1 moevideo-sync.rutarget.ru/sync
IP 87.242.93.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: moevideo-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Length: 0
Connection: close
Location: https://cs-0.moevideo.biz/ssp/cs?d=1&b=Y2jT-JxR-G5j
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=Y2jT-JxR-G5j; Path=/; Domain=.rutarget.ru; Expires=Wed, 02 Aug 2023 15:59:12 GMT; SameSite=None; Secure
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D
35.190.24.218307 Temporary Redirect 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Fri, 03 Feb 2023 15:59:11 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D&bounce=1&random=2326738151
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Fri, 03 Feb 2023 15:59:12 GMT
set-cookie: AFFICHE_W=M3ixJqsLReAz52; expires=Sat, 02 Mar 2024 15:59:12 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=moevideo&id=1bd4a7e8f10cceb1e791
217.66.147.33301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=moevideo&id=1bd4a7e8f10cceb1e791
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=moevideo&id=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=22&exu=1bd4a7e8f10cceb1e791
Set-Cookie: dspid=70968561-d249-47b1-a1f4-95d244b6fd83; expires=Thu, 25 Jan 2024 15:59:12 GMT; domain=.mts.ru; path=/; secure; SameSite=None
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 04cdfcec917de1764114f7cab1e00fc1
852275e33f2706c1313227245186262b6906d8c7
0681e82d9dedbc66e1457b8f66834d50017b1c4b0686b7915ec1c96858ba5702
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 21:49:24 GMT
Expires: Fri, 03 Feb 2023 21:49:24 GMT
ETag: "852275e33f2706c1313227245186262b6906d8c7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
yastatic.net/vas-bundles/716040/bundles-es2017/loader.bundle.js
178.154.131.215200 OK 166 kB URL HTTP/2 yastatic.net/vas-bundles/716040/bundles-es2017/loader.bundle.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 166 kB (165485 bytes)
Hash fa09b89555795f3f1896f3aff6323475
01f7ae114902a875c9fdb61ad75e872f571570cb
5beff49b6cca65c7252904fcf0c3a55ad9aa8688848b1a85305d73ff5f405c71
GET /vas-bundles/716040/bundles-es2017/loader.bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 15:59:12 GMT
content-type: text/javascript; charset=utf-8
content-length: 165485
access-control-allow-origin: *
cache-control: max-age=946708560
content-encoding: br
etag: "fa09b89555795f3f1896f3aff6323475"
expires: Sun, 02 Feb 2053 22:34:35 GMT
last-modified: Thu, 02 Feb 2023 14:27:02 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=946708560; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 23723ddfa405a70ea14916ae4e549587
ecae9f206a6f99910ec6d5af5070733e6245b300
b9cacc73575601d44dfc6f9fefb2997dc7a83456e5f371bd247e1b4b51851c88
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 22:31:36 GMT
Expires: Fri, 03 Feb 2023 22:31:36 GMT
ETag: "ecae9f206a6f99910ec6d5af5070733e6245b300"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ac872cbd2f38b750a597512fef4e8297
987171d53483198f0db22166a0b8d465099ff979
3f9ca3a4a51ad11a4c1d8b874f4eaa2dc05a59c7726381f608004b76d1a6b726
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 21:41:30 GMT
Expires: Tue, 07 Feb 2023 21:41:29 GMT
Etag: "987171d53483198f0db22166a0b8d465099ff979"
Cache-Control: max-age=365536,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793c5f54fd0f0b61-OSL
m.trafmag.com/images/1px-matching-go2net.gif?id=13d0b74033384adc8a38b8a499bad0f9
193.200.65.6200 OK 35 B URL HTTP/1.1 m.trafmag.com/images/1px-matching-go2net.gif?id=13d0b74033384adc8a38b8a499bad0f9
IP 193.200.65.6:0
ASN #6681 Rozetka Sp. z o.o.
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /images/1px-matching-go2net.gif?id=13d0b74033384adc8a38b8a499bad0f9 HTTP/1.1
Host: m.trafmag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Set-Cookie: vid=9331765641214399; Path=/; Domain=trafmag.com; Expires=Mon, 03 Feb 2025 15:59:12 GMT; Max-Age=63072000; HttpOnly; SameSite=None
P3P: CP="NON DSP COR CURa TIA"
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 133e5c9c82768ca1cefee917cd33744e
16e672b6254b7aa5dc7885735d43cc03d4bf4325
b6b982c289ab095fb40623972ae0e68de7b68f1bae8be711bdf7cfd24001b838
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:27:02 GMT
ETag: "16e672b6254b7aa5dc7885735d43cc03d4bf4325"
Last-Modified: Fri, 03 Feb 2023 13:27:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2306
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f58fb86b4ed-OSL
log.strm.yandex.ru/log?VAS=716040&event=CreateLoader
87.250.251.15200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=716040&event=CreateLoader
IP 87.250.251.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=716040&event=CreateLoader HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2194
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Fri, 03 Feb 2023 15:59:12 GMT
timing-allow-origin: https://moevideo.biz
access-control-allow-origin: https://moevideo.biz
x-request-id: 1675439952829753-6028063905050526210
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=1&b=Y2jT-JxR-G5j
5.188.150.189307 Temporary Redirect 0 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=1&b=Y2jT-JxR-G5j
IP 5.188.150.189:0
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ssp/cs?d=1&b=Y2jT-JxR-G5j HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=1bd4a7e8f10cceb1e791; mvsid=4ae70689-10d1-487b-8a3e-167e5dc19b24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Fri, 03 Feb 2023 15:59:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://rtb.moe.video/cs?d=2&b=Y2jT-JxR-G5j
Access-Control-Allow-Origin: *
sm.rtb.mts.ru/match/second?ssp=22&exu=1bd4a7e8f10cceb1e791
217.66.147.33200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=22&exu=1bd4a7e8f10cceb1e791
IP 217.66.147.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=22&exu=1bd4a7e8f10cceb1e791 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 15:59:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D
188.42.191.196302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D
IP 188.42.191.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=102cb426-72cf-5222-b831-a1a4dbec8ef5; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y90vUQACOlCVaWZ0DxAXL0GN_q5FyR984QTFkQ==; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
188.42.191.196200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.191.196:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=4f82edab-7cdf-5222-be6e-7707ddb35856; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y90vUQAC0qjXDsf832IDWgdYwieS5tXitn--bg==; Max-Age=31536000; Expires=Sat, 03 Feb 2024 15:59:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
yandex.ru/ads/vmap/266507?video-content-id=0&ad-session-id=6825831675439983992&pcode-icookie=sDzKubXZWbdgXLLE1d99293%2Bi6HlBNyVazsEqCyCB%2BF%2BEeQ2JVtPanur4DMXPSLawXKeY7GKdoVBMmWhf3RapV%2FtniQ%3D&pcode-test-ids=685674%2C0%2C15%3B711102%2C0%2C45%3B716040%2C0%2C51&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22CTL%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22CTL%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22exp%22%2C%22ADSDKVER%22%3A%22716040%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=716040&adsdk-bundle-name=AdLoader&vsid=349a6f236afe46c6fabcda6abaf448e1f4d449a70c3fxVASx6040x1675439983&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675439983996&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&pcode-active-testids=716040%2C0%2C51&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D
5.255.255.88200 OK 967 B URL HTTP/2 yandex.ru/ads/vmap/266507?video-content-id=0&ad-session-id=6825831675439983992&pcode-icookie=sDzKubXZWbdgXLLE1d99293%2Bi6HlBNyVazsEqCyCB%2BF%2BEeQ2JVtPanur4DMXPSLawXKeY7GKdoVBMmWhf3RapV%2FtniQ%3D&pcode-test-ids=685674%2C0%2C15%3B711102%2C0%2C45%3B716040%2C0%2C51&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22CTL%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22CTL%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22exp%22%2C%22ADSDKVER%22%3A%22716040%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=716040&adsdk-bundle-name=AdLoader&vsid=349a6f236afe46c6fabcda6abaf448e1f4d449a70c3fxVASx6040x1675439983&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675439983996&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&pcode-active-testids=716040%2C0%2C51&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D
IP 5.255.255.88:0
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 text
Hash 825c5bce31701a2ac5d1d3e4fc7f27c8
2bd632835ce61b3f1281d7acb18fc038dffa5db1
281c43e367c7cd3fb52d3c2a96026535622ae8d45805bbf54316e0e385121ce2
GET /ads/vmap/266507?video-content-id=0&ad-session-id=6825831675439983992&pcode-icookie=sDzKubXZWbdgXLLE1d99293%2Bi6HlBNyVazsEqCyCB%2BF%2BEeQ2JVtPanur4DMXPSLawXKeY7GKdoVBMmWhf3RapV%2FtniQ%3D&pcode-test-ids=685674%2C0%2C15%3B711102%2C0%2C45%3B716040%2C0%2C51&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22CTL%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22CTL%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22exp%22%2C%22ADSDKVER%22%3A%22716040%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=716040&adsdk-bundle-name=AdLoader&vsid=349a6f236afe46c6fabcda6abaf448e1f4d449a70c3fxVASx6040x1675439983&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675439983996&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&pcode-active-testids=716040%2C0%2C51&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675439952514613-7233224398342826330-vla1-4706-vla-l7-balancer-8080-BAL-8003
last-modified: Fri, 03 Feb 2023 15:59:12 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 03 Feb 2023 15:59:12 GMT
set-cookie: i=FLiWwLBidAA0SCSJS/q1Qe96ABvkskxyWGUkP9E6Z+p4aLITURHWZrY2dOoDG7eVr5h0IzjFBqlzf8R7X9r/Xl7f2qY=; Expires=Sun, 02-Feb-2025 15:59:12 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=8814012431675439952; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:12 GMT; SameSite=None; Secure; HttpOnly
content-type: text/xml; charset=utf-8
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Fri, 03 Feb 2023 15:59:12 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=381250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793c5f54c9ebb529-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e2c37744345e10d6d8fc2836bbb99366
afa7a1d5374feb70d4c4f6a324b66abd25f35495
365c53619d1190b77a7b2ec79de9831da6c957f46e54ccc3ed063fb401a17571
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 14:15:13 GMT
ETag: "afa7a1d5374feb70d4c4f6a324b66abd25f35495"
Last-Modified: Fri, 03 Feb 2023 14:15:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1717
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f5dc9bfb4ed-OSL
relap.mail.ru/vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru
95.163.43.46200 OK 95 B URL HTTP/2 relap.mail.ru/vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru
IP 95.163.43.46:0
File type ASCII text, with no line terminators
Hash 0eaa0e932cb05f39e42358f0a7823e3b
a65b5e712bbe22ad0c97384bfb1fb99e8f9fd139
7ef4f6c06c96a2ef1374b8d3174b555c5c1b5295847afa7e3d2108e71416d978
GET /vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru HTTP/1.1
Host: relap.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/xml
content-length: 95
set-cookie: unique=5du3gc4T; expires=Mon, 31 Jan 2033 15:59:13 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
fsts=1675439953; expires=Mon, 31 Jan 2033 15:59:13 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
lsts=1675439953; expires=Mon, 31 Jan 2033 15:59:13 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
suid=7f02f396d7c746ae59d71b944a84e77076c8dccc--b5c1b1f6c36224011f238b4eeddf68b46afbac39ac4037765539ca253584afed; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
x-xss-protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
access-control-allow-credentials: true
access-control-max-age: 1728000
access-control-allow-headers: Authorization,Content-Type,Origin,User-Agent,DNT,Cache-Control,Range,X-Mx-ReqToken,Keep-Alive,X-Requested-With,If-Modified-Since,Cookie,X-Csrf-Token,X-Relap-Unique,X-Relap-Cookie,X-Relap-UUID
access-control-allow-origin: https://moevideo.biz
vary: Origin
x-content-type-options: nosniff
x-server: vast34
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, PATCH
date: Fri, 03 Feb 2023 15:59:13 GMT
strict-transport-security: max-age=5184000; includeSubdomains;
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru
195.209.108.50302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru
IP 195.209.108.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Fri, 03 Feb 2023 15:59:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4756528953; expires=Sun, 02 Feb 2025 15:59:13 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru&tuid=-4756528953
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
rtb.moe.video/cs?d=3&b=b242711f3477de565844
46.148.232.58200 OK 0 B URL HTTP/2 rtb.moe.video/cs?d=3&b=b242711f3477de565844
IP 46.148.232.58:0
ASN #49505 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs?d=3&b=b242711f3477de565844 HTTP/1.1
Host: rtb.moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:59:14 GMT
content-length: 0
version: v1.0.1.2
set-cookie: uid=1746e35539b292d2ebf1; expires=Fri, 27 Sep 33658 01:46:40 GMT; domain=moe.video; path=/; secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
rtb.moe.video/cs?d=8&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
46.148.232.58200 OK 0 B URL HTTP/2 rtb.moe.video/cs?d=8&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5
IP 46.148.232.58:0
ASN #49505 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs?d=8&b=a0e2e5bc-e147-40c2-6802-fdf1cf11d2b5 HTTP/1.1
Host: rtb.moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:59:14 GMT
content-length: 0
version: v1.0.1.2
set-cookie: uid=fe649d0426534d297e45; expires=Fri, 27 Sep 33658 01:46:40 GMT; domain=moe.video; path=/; secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru&tuid=-4756528953
195.209.108.50200 OK 142 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru&tuid=-4756528953
IP 195.209.108.50:0
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 323b69eb36badcc8812eaface584f104
2a1a53f30ce6b92507bd9c6082b55804a9ff29b5
c552f6e085fb5cf5196d9ef32b915c9591a4459ab5b92178a1f49b8ccb96a375
GET /cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4806472&tail256=base.garant.ru&tuid=-4756528953 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:14 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="https://adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Sun, 02 Feb 2025 15:59:14 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
rtb.moe.video/cs?d=9&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
46.148.232.58200 OK 0 B URL HTTP/2 rtb.moe.video/cs?d=9&b=9009125c-ded4-429e-9aeb-06e6fbaadd60
IP 46.148.232.58:0
ASN #49505 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs?d=9&b=9009125c-ded4-429e-9aeb-06e6fbaadd60 HTTP/1.1
Host: rtb.moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:59:14 GMT
content-length: 0
version: v1.0.1.2
set-cookie: uid=26e6dbd019244af372b5; expires=Fri, 27 Sep 33658 01:46:40 GMT; domain=moe.video; path=/; secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru
195.209.108.50302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru
IP 195.209.108.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Fri, 03 Feb 2023 15:59:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5565769156; expires=Sun, 02 Feb 2025 15:59:14 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru&tuid=-5565769156
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru
195.209.108.50302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru
IP 195.209.108.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Fri, 03 Feb 2023 15:59:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5764289075; expires=Sun, 02 Feb 2025 15:59:14 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru&tuid=-5764289075
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash eaee373dbc1831e0053dfacabf76be18
86d5c711c572797d3580ed9196e95ed1dc1e4fa4
232c05eab7d8d74d0c3175f91cdcc5b026664f62d467b227fb78094ff95507bc
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 07 Feb 2023 13:16:07 GMT
ETag: "86d5c711c572797d3580ed9196e95ed1dc1e4fa4"
Last-Modified: Fri, 03 Feb 2023 13:16:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2304
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c5f6a89c5b4ed-OSL
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru&tuid=-5565769156
195.209.108.50200 OK 142 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru&tuid=-5565769156
IP 195.209.108.50:0
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 323b69eb36badcc8812eaface584f104
2a1a53f30ce6b92507bd9c6082b55804a9ff29b5
c552f6e085fb5cf5196d9ef32b915c9591a4459ab5b92178a1f49b8ccb96a375
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=7834840&tail256=base.garant.ru&tuid=-5565769156 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:15 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="https://adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Sun, 02 Feb 2025 15:59:15 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru&tuid=-5764289075
195.209.108.50200 OK 142 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru&tuid=-5764289075
IP 195.209.108.50:0
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 323b69eb36badcc8812eaface584f104
2a1a53f30ce6b92507bd9c6082b55804a9ff29b5
c552f6e085fb5cf5196d9ef32b915c9591a4459ab5b92178a1f49b8ccb96a375
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=3798075&tail256=base.garant.ru&tuid=-5764289075 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:59:15 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="https://adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Sun, 02 Feb 2025 15:59:15 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
rtb.moe.video/cs?d=2&b=Y2jT-JxR-G5j
46.148.232.58200 OK 0 B URL HTTP/2 rtb.moe.video/cs?d=2&b=Y2jT-JxR-G5j
IP 46.148.232.58:0
ASN #49505 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs?d=2&b=Y2jT-JxR-G5j HTTP/1.1
Host: rtb.moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:59:16 GMT
content-length: 0
version: v1.0.1.2
set-cookie: uid=921c0e46ce08904009ca; expires=Fri, 27 Sep 33658 01:46:40 GMT; domain=moe.video; path=/; secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675439980375%3A1675439987676%3A3%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.026782129704788105;e=RT/unload;et=1675439987675;pvt=8186;vtauto=7306
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675439980375%3A1675439987676%3A3%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.026782129704788105;e=RT/unload;et=1675439987675;pvt=8186;vtauto=7306
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/;st=1675439979489;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=ed901a7123c74cb8;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675439980375%3A1675439987676%3A3%3A66db03de8eb097ea639ce941c42d4288;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.026782129704788105;e=RT/unload;et=1675439987675;pvt=8186;vtauto=7306 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:16 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675439956:84008:::; path=/; expires=Sun, 04-Feb-24 15:59:16 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ad.mail.ru/vast/362146?rand=291118&sc=2450866831&dl=moevideo.biz
95.163.41.56200 OK 8.3 kB URL HTTP/2 ad.mail.ru/vast/362146?rand=291118&sc=2450866831&dl=moevideo.biz
IP 95.163.41.56:0
Hash e9b8a6792c21d08369f19429791d7913
d74c109c28e4465a3b16bbce5834696e86c1025a
fefc8ccf6ad77382226474398e050890c6efc98f0efaf72535bdad8e383dd6c5
GET /vast/362146?rand=291118&sc=2450866831&dl=moevideo.biz HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:16 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
base.garant.ru/favicon.ico
185.178.208.73200 OK 0 B URL HTTP/2 base.garant.ru/favicon.ico
IP 185.178.208.73:0
GET /favicon.ico HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/9d89ba6e3e633b0dac1a8caf5a5a81d3/
Cookie: __ddg1_=x04YcZdVzsMvEG54dmv1; garantId=b0973bdea3db11ed9f5fb88303828b09; adtech_uid=4eff9be6-d1da-4f53-a3ed-f777bc9442a3%3Agarant.ru; top100_id=t1.44507.539036500.1675439979826; t3_sid_44507=s1.2143820306.1675439979827.1675439980000.1.2; last_visit=1675439979828%3A%3A1675439979828; mindboxDeviceUUID=f59b9b5c-35b1-4e13-a464-17132ac9644d; directCrm-session=%7B%22deviceGuid%22%3A%22f59b9b5c-35b1-4e13-a464-17132ac9644d%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:40:22 GMT
content-type: image/x-icon
last-modified: Mon, 20 Jun 2016 14:22:27 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
vary: Accept-Encoding
etag: W/"5767fc23-3aee"
expires: Wed, 08 Feb 2023 12:05:24 GMT
age: 184726
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze
5.255.255.88200 OK 0 B URL HTTP/2 yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze
IP 5.255.255.88:0
GET /ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675439953416971-1265493867227865909-vla1-4706-vla-l7-balancer-8080-BAL-4832
last-modified: Fri, 03 Feb 2023 15:59:13 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 03 Feb 2023 15:59:13 GMT
set-cookie: yandexuid=9278659091675439953; Path=/; Domain=.yandex.ru; Expires=Mon, 31-Jan-2033 15:59:13 GMT; SameSite=None; Secure
i=Krzr9H+T4P7a10+3nK8Mt8bRNmOpnPzXEYLSDcEm9qk1/2q7FTP99lpcZ8gNd2fR7nwi+ZVN89GM/X2FkgUCiiGHGB4=; Expires=Sun, 02-Feb-2025 15:59:13 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=9829139001675439953; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:13 GMT; SameSite=None; Secure; HttpOnly
content-type: text/xml; charset=utf-8
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Fri, 03 Feb 2023 15:59:13 GMT
x-adfox: {"default":true, "place_id":1201973, "code_type":"regular"}
X-Firefox-Spdy: h2
ad.mail.ru/vast/1059170?pr=1162124&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1059170?pr=1162124&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
IP 95.163.41.56:0
GET /vast/1059170?pr=1162124&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:13 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/1178688?pr=2794667&sc=2450866831&dl=base.garant.ru
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1178688?pr=2794667&sc=2450866831&dl=base.garant.ru
IP 95.163.41.56:0
GET /vast/1178688?pr=2794667&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:13 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2=
5.255.255.88200 OK 0 B URL HTTP/2 yandex.ru/ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2=
IP 5.255.255.88:0
GET /ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2= HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675439954868423-15275765756440547955-vla1-4706-vla-l7-balancer-8080-BAL-5462
last-modified: Fri, 03 Feb 2023 15:59:14 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 03 Feb 2023 15:59:14 GMT
set-cookie: yandexuid=7405479551675439954; Path=/; Domain=.yandex.ru; Expires=Mon, 31-Jan-2033 15:59:14 GMT; SameSite=None; Secure
i=bqaZors6KXFZw9Pno2h7rlBTrLlsmSYQqIkEjMsiqgDiRxmdwaMuLP+l8c4/v3ztHfX9r9dW7I9Cb6OePlJXerW81OI=; Expires=Sun, 02-Feb-2025 15:59:14 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=9181474061675439954; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:14 GMT; SameSite=None; Secure; HttpOnly
content-type: text/xml; charset=utf-8
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Fri, 03 Feb 2023 15:59:14 GMT
x-adfox: {"default":true, "place_id":1142977, "code_type":"regular"}
X-Firefox-Spdy: h2
ad.mail.ru/vast/1151494?pr=4007374&sc=2450866831&dl=base.garant.ru
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1151494?pr=4007374&sc=2450866831&dl=base.garant.ru
IP 95.163.41.56:0
GET /vast/1151494?pr=4007374&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:14 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/adq/?callback=mailru_ad1675439983129&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=600047680
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/adq/?callback=mailru_ad1675439983129&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=600047680
IP 95.163.41.56:0
GET /adq/?callback=mailru_ad1675439983129&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=600047680 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:12 GMT
content-type: application/x-javascript; charset=utf-8
set-cookie: VID=1jhGId1FKcoF0024DA2GeFIF:::0-0-0-8f78810:CAASEBVFDLwVORX4j1rj2-QAKvIaYEvhS0DN2b7UK6LNo-3jrwDsctVntueAKEtPSzu_iQpD_7ueEvJT9OyjnQKHTvUjFCuYop-xYxkcRZ-v-atv4iiZE54EKhoKJ56QlzM6iDQ5YeZhFaX8Ch0gXy55Aoxzpg; path=/; expires=Sun, 04-Feb-24 15:59:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
cache-control: private, no-cache, no-store
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSAo PSDo OUR BUS UNI NAV STA INT"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
GET /watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F9d89ba6e3e633b0dac1a8caf5a5a81d3%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A1077%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A487467094023%3Ahid%3A660621461%3Az%3A0%3Ai%3A20230203155940%3Aet%3A1675439980%3Ac%3A1%3Arn%3A199862502%3Arqn%3A1%3Au%3A1675439980825616524%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C127%2C179%2C0%2C325%2C0%2C%2C416%2C23%2C%2C%2C%2C1162%3Aco%3A0%3Ans%3A1675439978397%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675439980%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%2083.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%A3%D1%87%D0%B5%D1%82%20%D0%BE%D1%80%D0%B3%D0%B0%D0%BD%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D0%B9%20%D0%B8%20%D1%84%D0%B8%D0%B7%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D1%85%20%D0%BB%D0%B8%D1%86%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 03 Feb 2023 15:59:09 GMT
access-control-allow-origin: https://base.garant.ru
set-cookie: yabs-sid=2214966501675439949; Path=/; SameSite=None; Secure
i=gTFkwOQMe9tF/2wDWk724x7y8TplczKIjGBbLWzXu1eLLw/NI0wnJBjvysO5/A6F2O5Ab0Ix8yn45Vu4IzkCNZ0CoYQ=; Expires=Mon, 31-Jan-2033 15:59:08 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6245714661675439949; Expires=Sat, 03-Feb-2024 15:59:09 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6245714661675439949; Expires=Sat, 03-Feb-2024 15:59:09 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706975949.yc.1675439949#1706975949.yrts.1675439949#1706975949.yrtsi.1675439949; Expires=Sat, 03-Feb-2024 15:59:09 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 15:59:09 GMT
last-modified: Fri, 03-Feb-2023 15:59:09 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ad.mail.ru/vast/1094591?pr=7519790&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1094591?pr=7519790&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
IP 95.163.41.56:0
GET /vast/1094591?pr=7519790&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:13 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/389706?pr=5809249&sc=2450866831&dl=base.garant.ru
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/389706?pr=5809249&sc=2450866831&dl=base.garant.ru
IP 95.163.41.56:0
GET /vast/389706?pr=5809249&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:16 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/389706?pr=2559806&sc=2450866831&dl=base.garant.ru
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/389706?pr=2559806&sc=2450866831&dl=base.garant.ru
IP 95.163.41.56:0
GET /vast/389706?pr=2559806&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:13 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/1115073?rand=2076014&sc=2450866831
95.163.41.56200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1115073?rand=2076014&sc=2450866831
IP 95.163.41.56:0
GET /vast/1115073?rand=2076014&sc=2450866831 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:59:13 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
st.top100.ru/top100/top100.js
81.19.89.18200 OK 0 B URL HTTP/2 st.top100.ru/top100/top100.js
IP 81.19.89.18:0
ASN #24638 Rambler Internet Holding LLC
GET /top100/top100.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 03 Feb 2023 15:59:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 10:42:42 GMT
x-rgw-object-type: Normal
etag: W/"85fd0629b4936ca6bd7f6dca635c0da1"
x-amz-request-id: tx000000000000009a7ae62-0063dd2d5c-783970ff-default
expires: Fri, 03 Feb 2023 16:59:08 GMT
cache-control: max-age=3600
set-cookie: proto_uid=1CIAAEwv3WM6mpIeAYluCgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
st.top100.ru/top100/3.13.6/usability.js
81.19.89.18200 OK 0 B URL HTTP/2 st.top100.ru/top100/3.13.6/usability.js
IP 81.19.89.18:0
ASN #24638 Rambler Internet Holding LLC
GET /top100/3.13.6/usability.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 03 Feb 2023 15:59:08 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 30 Jan 2023 10:42:42 GMT
x-rgw-object-type: Normal
etag: W/"e8cd7191520320c30825c4c7c12b0d42"
x-amz-request-id: tx000000000000009a810e9-0063dd2e1f-783970ff-default
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
set-cookie: proto_uid=1CIAAEwv3WM6mpIeAZRuCgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze
5.255.255.88200 OK 0 B URL HTTP/2 yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze
IP 5.255.255.88:0
GET /ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675439954888677-16012573659246920025-vla1-4706-vla-l7-balancer-8080-BAL-9333
last-modified: Fri, 03 Feb 2023 15:59:14 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 03 Feb 2023 15:59:14 GMT
set-cookie: yandexuid=3469200251675439954; Path=/; Domain=.yandex.ru; Expires=Mon, 31-Jan-2033 15:59:14 GMT; SameSite=None; Secure
i=Eppex38EZ1sS5OINLHFPJrclPOIB9OZNr7oCUty4M6tJqIrGgzR0b93946Yh/h/iqQgO2yKV2tmivS+TjnZCjrsNKVE=; Expires=Sun, 02-Feb-2025 15:59:14 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=8333073841675439954; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 15:59:14 GMT; SameSite=None; Secure; HttpOnly
content-type: text/xml; charset=utf-8
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
expires: Fri, 03 Feb 2023 15:59:14 GMT
x-adfox: {"default":true, "place_id":1202163, "code_type":"regular"}
X-Firefox-Spdy: h2