synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
37.1.207.217301 Moved Permanently 8 B URL HTTP/1.1 synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
IP 37.1.207.217:0
File type ASCII text, with no line terminators
Hash 4202ef115ebede37eb22297113f5fb32
58cfcdca5ed542240131e60e7a5af5e83f61e786
171a10659e4f55415bf9eca0b9310d69e3df6ea85ee20419e0d6f4d95d98621f
Analyzer Verdict Alert fortinet Phishing
GET /load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:24 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 8
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: PHPSESSID=nbjba4ojbn67imjaop0ss49gjb; path=/; secure; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2810
Expires: Thu, 24 Nov 2022 13:11:15 GMT
Date: Thu, 24 Nov 2022 12:24:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6571
Cache-Control: max-age=86182
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:25 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 12:20:47 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7995
Expires: Thu, 24 Nov 2022 14:37:40 GMT
Date: Thu, 24 Nov 2022 12:24:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 12:18:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 327
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CCeK0Sfm0JQmHI6ux9Nt1W8P6YT48pVd8L0ULjN3v5U/8opSRlrAOHoSVZZP4k3yiQ3cVnozyJ0=
x-amz-request-id: DEYHGYGMJC0SMMZ3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 11:40:23 GMT
age: 2642
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 12:24:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 92c233c2e3ba66374e4b05c9f5eec058
c13b72fa5e90f93f26e7fa08b1402007239fb123
c98666ad3da6bec6266fee2b9e03cae14c3470a665d6b1a409184237ec7b9400
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:42:27 GMT
ETag: "c13b72fa5e90f93f26e7fa08b1402007239fb123"
Last-Modified: Thu, 24 Nov 2022 10:42:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f17388f0b4d-OSL
synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
37.1.207.217200 OK 37 kB URL HTTP/1.1 synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
IP 37.1.207.217:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1595), with CRLF, LF line terminators
Hash 500f2fbae50f266f282ad4d9482093b7
13c982f3ad63212c937233f917d7740607466aeb
baf22f47bc5920d0ff7f020ba7003540f64e8d23628caf2b64018485872cdf6b
Analyzer Verdict Alert fortinet Phishing
GET /load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; path=/; secure; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Last-Modified: Mon, 22 Mar 2021 06:43:10 +0300 GMT
Content-Encoding: gzip
synthira.ru/engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css,engine/editor/css/default.css&v=33438
37.1.207.217200 OK 28 kB URL HTTP/1.1 synthira.ru/engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css,engine/editor/css/default.css&v=33438
IP 37.1.207.217:0
File type ASCII text, with very long lines (37895), with CRLF line terminators
Hash 12a6e7f8ed80784bd2f33752ad85b2fb
834248c92f15518d1a3030983d6376d80a9ab772
8954aa2757c10c6ae62a48cec10eb9f261b25a29c2c5c372aef74b5de8435e74
GET /engine/classes/min/index.php?f=engine/editor/jscripts/froala/fonts/font-awesome.css,engine/editor/jscripts/froala/css/editor.css,engine/editor/css/default.css&v=33438 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 27809
Connection: keep-alive
Keep-Alive: timeout=60
Expires: Fri, 24 Nov 2023 12:24:25 GMT
Vary: Accept-Encoding
Last-Modified: Sat, 04 Jan 2020 11:22:00 GMT
ETag: "pub1578136920;gz"
Cache-Control: max-age=31536000
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2a00bace4ce334e05d52d481a8a645e2
895c4d37c61bbd0cddd5cc6ac871bfdc45291945
266d5a7c91c522bf671f5b9e4c62a9e02664c7fb35f1cec69e2c7f0fc7c70da6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4751
Cache-Control: max-age=93370
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Etag: "637e19a5-117"
Expires: Fri, 25 Nov 2022 14:20:36 GMT
Last-Modified: Wed, 23 Nov 2022 13:01:25 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a54ccb27cee7db352e269389e279a76c
d62c9f3d2db62114a67e13d0ed23aea091edb4dc
a83b0a3f58c5527d087f1b48f8cb264c405f2839c0598beb372fabee4f63aae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1172
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Last-Modified: Thu, 24 Nov 2022 12:04:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
synthira.ru/engine/modules/light_chat/assets/styles.css?v6
37.1.207.217200 OK 3.5 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/assets/styles.css?v6
IP 37.1.207.217:0
Hash 7de86c480cf50d6a9d014df73bab3362
22cdb32f61bcd74b554c5e74b15a0fd34df11f80
c086c8435b12c0530a152d6cfe8535352b5a66c5bb41aef6a4d40dec3902265f
GET /engine/modules/light_chat/assets/styles.css?v6 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: text/css
Last-Modified: Thu, 10 Jun 2021 08:23:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"60c1cc13-45c6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6093
Cache-Control: max-age=167036
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:48:22 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 12:11:11 GMT
cache-control: public,max-age=3600
age: 795
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
synthira.ru/templates/Synthira/css/engine.css?v36
37.1.207.217200 OK 24 kB URL HTTP/1.1 synthira.ru/templates/Synthira/css/engine.css?v36
IP 37.1.207.217:0
File type assembler source, Unicode text, UTF-8 text, with very long lines (13483)
Hash 3e0737168debaa8973b423f93d7d25eb
d3c24836a459e8a3be35d15a8cd035fe62e1c6db
2237ccc1c99faa1e28e69d417c4f2b19e8f8d562aa85eb6da11b69cf743261a1
GET /templates/Synthira/css/engine.css?v36 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: text/css
Last-Modified: Fri, 07 Jan 2022 21:15:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"61d8ad72-f86f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
synthira.ru/templates/Synthira/css/styles.css?v121
37.1.207.217200 OK 15 kB URL HTTP/1.1 synthira.ru/templates/Synthira/css/styles.css?v121
IP 37.1.207.217:0
File type assembler source, Unicode text, UTF-8 text
Hash b0bb50638f161fa27f852a803409de15
af5d548161e2217a42ddc660be2b0c668aaa44ba
203c12f9154b51d5606da6cf8c40c054a2a83b1f5e6d1ed2c022d37f3cdc675e
GET /templates/Synthira/css/styles.css?v121 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: text/css
Last-Modified: Mon, 07 Feb 2022 16:31:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6201495b-12738"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
synthira.ru/engine/modules/light_chat/assets/libs.js
37.1.207.217200 OK 5.0 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/assets/libs.js
IP 37.1.207.217:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (1784), with CRLF line terminators
Hash 8560215b144d338f7bca3c87c8e39547
adf2ec49d31d7bd194f2b335741e28e05e80a466
972a414b57f1102b6ea13f67b3b537cbb084e4dff3366faa56b495589b63e7fd
GET /engine/modules/light_chat/assets/libs.js HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/javascript
Last-Modified: Fri, 13 Nov 2020 08:49:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"5fae4880-5c75"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
synthira.ru/engine/classes/min/index.php?g=general&v=33438
37.1.207.217200 OK 30 kB URL HTTP/1.1 synthira.ru/engine/classes/min/index.php?g=general&v=33438
IP 37.1.207.217:0
File type ASCII text, with very long lines (32065), with CRLF line terminators
Hash d53b6078eba5b9e73ac9052e8599ecb4
77d1657c9cf82e5c36da1bb2716e0ca3f00ed2c6
c2a76413a6f266a6a1fcf3f90c65f07d20534ba5d7131f53acdb9102bb3d77ae
GET /engine/classes/min/index.php?g=general&v=33438 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 29779
Connection: keep-alive
Keep-Alive: timeout=60
Expires: Fri, 24 Nov 2023 12:24:25 GMT
Vary: Accept-Encoding
Last-Modified: Tue, 05 Feb 2019 21:00:00 GMT
ETag: "pub1549400400;gz"
Cache-Control: max-age=31536000
Content-Encoding: gzip
synthira.ru/templates/Synthira/js/slimselect.min.js
37.1.207.217200 OK 8.7 kB URL HTTP/1.1 synthira.ru/templates/Synthira/js/slimselect.min.js
IP 37.1.207.217:0
File type ASCII text, with very long lines (35985), with no line terminators
Hash eab7d5900dbc207ac789fde2f308a51f
b315b0d5c6bd75598e18bd0bc0d9b9c062553792
6012cae1527ea0c7107839fe937d3e73e50646a09fa37bb384aee5e470954289
GET /templates/Synthira/js/slimselect.min.js HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/javascript
Last-Modified: Mon, 22 Feb 2021 14:04:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6033b9e3-8c91"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
synthira.ru/templates/Synthira/js/libs.js?v1
37.1.207.217200 OK 417 B URL HTTP/1.1 synthira.ru/templates/Synthira/js/libs.js?v1
IP 37.1.207.217:0
Hash 20ecc93b539a8296b7e533a81412470e
aad04ab300b96caf69237af35964af17d92c0065
2f4186d1b6a71ce55abf16c0b8816f38fd6434c5a38df9506cb320cf73c4e9e3
GET /templates/Synthira/js/libs.js?v1 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: application/javascript
Content-Length: 417
Last-Modified: Fri, 26 Feb 2021 17:42:02 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "603932ea-1a1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/templates/Synthira/js/lib.js?v10
37.1.207.217200 OK 2.5 kB URL HTTP/1.1 synthira.ru/templates/Synthira/js/lib.js?v10
IP 37.1.207.217:0
Hash 7f5d9848859498c2842260ae27f07a95
e3a121d8494d16c28f77f102a8baab3c722e9832
afb3f7633e3c1801d26b3c567064577c414a6d0050bf36db86d67e6a4d299834
GET /templates/Synthira/js/lib.js?v10 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/javascript
Last-Modified: Fri, 05 Feb 2021 06:55:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"601cebd4-1c5a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
synthira.ru/uploads/button1bl.png
37.1.207.217200 OK 23 kB URL HTTP/1.1 synthira.ru/uploads/button1bl.png
IP 37.1.207.217:0
File type PNG image data, 671 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 65e27845e83d508a995f6a30d55d3d83
0cfbf68247109b2187ec75e9a6308eb0330f38de
be437b3532cb605605c19bb2e66a0214aa513f680cfbf90ab8dd4a5881db128b
GET /uploads/button1bl.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 23294
Last-Modified: Fri, 22 Jul 2022 10:01:46 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62da758a-5afe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.google.com/recaptcha/api.js?hl=ru
142.250.74.164200 OK 554 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=ru
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 905fce34b8e068012671d69788cc6b55
7033e6a978574ef40124b1006e97af911a1f8d68
0059297945e34617a480fc063600055dbef3da86c1bd5bfa3708a11ea08559c2
GET /recaptcha/api.js?hl=ru HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 24 Nov 2022 12:24:26 GMT
date: Thu, 24 Nov 2022 12:24:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-121208101-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-121208101-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 63b6992d0fc4de84291b5bd3fd703970
8dd2e95087c131ae1813105ab6209cac2618257d
5e108d586f75744cfc6b87a75eef522de3f15f30b1aa7d2cfb45cea9f770cb4b
GET /gtag/js?id=UA-121208101-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 12:24:26 GMT
expires: Thu, 24 Nov 2022 12:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44713
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
synthira.ru/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/highslide/highslide.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=33438
37.1.207.217200 OK 290 kB URL HTTP/1.1 synthira.ru/engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/highslide/highslide.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=33438
IP 37.1.207.217:0
File type ASCII text, with very long lines (18446), with CRLF line terminators
Size 290 kB (290133 bytes)
Hash 5557284a5d14a5983800ed8879149e11
ecc20eee3a893df3c20d2db05bbe6e5ab1d1406e
39e422b05f724eda348fc3228942ae9d76e0455cc063b3d104c5c89c6082a3f0
GET /engine/classes/min/index.php?f=engine/classes/js/jqueryui.js,engine/classes/js/dle_js.js,engine/classes/highslide/highslide.js,engine/skins/codemirror/js/code.js,engine/editor/jscripts/froala/editor.js,engine/editor/jscripts/froala/languages/ru.js&v=33438 HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:25 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 290133
Connection: keep-alive
Keep-Alive: timeout=60
Expires: Fri, 24 Nov 2023 12:24:25 GMT
Vary: Accept-Encoding
Last-Modified: Wed, 14 Jul 2021 05:54:13 GMT
ETag: "pub1626242053;gz"
Cache-Control: max-age=31536000
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a54ccb27cee7db352e269389e279a76c
d62c9f3d2db62114a67e13d0ed23aea091edb4dc
a83b0a3f58c5527d087f1b48f8cb264c405f2839c0598beb372fabee4f63aae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1172
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Last-Modified: Thu, 24 Nov 2022 12:04:54 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
synthira.ru/uploads/posts/2021-02/1612628630_5fae052faadb124c4a3518fd-preview.webp
37.1.207.217200 OK 279 B URL HTTP/1.1 synthira.ru/uploads/posts/2021-02/1612628630_5fae052faadb124c4a3518fd-preview.webp
IP 37.1.207.217:0
Hash 2a00bace4ce334e05d52d481a8a645e2
895c4d37c61bbd0cddd5cc6ac871bfdc45291945
266d5a7c91c522bf671f5b9e4c62a9e02664c7fb35f1cec69e2c7f0fc7c70da6
GET /uploads/posts/2021-02/1612628630_5fae052faadb124c4a3518fd-preview.webp HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/webp
Content-Length: 126544
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Sat, 06 Feb 2021 16:22:40 GMT
ETag: "1ee50-5baad58793400"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.163.1.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.1.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dtAhnm6LIurvwzxwDlC8KA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6Lc5OwfsWVkAj27Fr7Aa1oDm3M8=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.3.1/css/all.css
172.64.132.15200 OK 11 kB URL HTTP/2 use.fontawesome.com/releases/v5.3.1/css/all.css
IP 172.64.132.15:0
File type ASCII text, with very long lines (48464)
Hash 39d77562011c8ab88e198bd438ac560f
2fe08f08afbfffe58f9c196da104e7ee521de709
97c6965ea57bd16bf34ff7944adb9edc523ce689d30af9969bfe288a295320f2
GET /releases/v5.3.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 12:24:26 GMT
content-type: text/css
x-amz-id-2: kJxdgnqHQqu6dPyCjEeaUvNtv1RzFSC9QCpVa1gblfQnyDNPBO8ZMKvlDslcseGdLU7ERR/AVRo=
x-amz-request-id: CMT29S9ZW42WV7GC
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:14 GMT
etag: W/"10519cfd3206802f58315b877a9beab5"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 401939
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qycRLZ6Xv7fMhvgb%2F73xP0FmJfO8go9AkDNNGf%2Fi3Yo6OnUzRRmNi6tXalZKpyRmkVhACzBXBZ%2FBVxE7PXUoQiw30A9wm7Enu2LtlQFKWOI5kMjJvIi6anpXCE4f5%2BygR73vNn1S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f21f1bfaae7692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
synthira.ru/templates/Synthira/images/up1.png
37.1.207.217200 OK 868 B URL HTTP/1.1 synthira.ru/templates/Synthira/images/up1.png
IP 37.1.207.217:0
File type PNG image data, 54 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 386d655595c4a10e7ae472ac489f3386
9561fae1e2dea00c05202763f9b923dbc90aca99
9b20cab4a6f3c5f66272c1e1ffcb96597fa3aced1353ef26861278565b5bf819
GET /templates/Synthira/images/up1.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 868
Last-Modified: Wed, 29 Aug 2018 20:42:59 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5b870553-364"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/templates/Synthira/dleimages/noavatar.png
37.1.207.217200 OK 7.8 kB URL HTTP/1.1 synthira.ru/templates/Synthira/dleimages/noavatar.png
IP 37.1.207.217:0
File type PNG image data, 300 x 300, 8-bit colormap, non-interlaced\012- data
Hash 5ea9a1fd893a1836c7dde7a0247e16cd
57f0be7366093897c5297441af9e9e91ba92a970
08809ebe56b2fe3b4cfdaaeeab3a3a334c3600734744f9a5a2870f639d59c82f
GET /templates/Synthira/dleimages/noavatar.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 7830
Last-Modified: Tue, 18 Dec 2018 13:53:40 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5c18fbe4-1e96"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/uploads/fotos/810_foto.png
37.1.207.217200 OK 9.9 kB URL HTTP/1.1 synthira.ru/uploads/fotos/810_foto.png
IP 37.1.207.217:0
File type PNG image data, 110 x 110, 8-bit/color RGB, non-interlaced\012- data
Hash 1f170b5cf586c420fc5e79f9ff8338c4
0b0f935d052b30349a8de75f2bd526141b287174
fc291bae68eef75ae78bab1348ae5313ba0b1f02084e5c0f28109f17a1f528ea
GET /uploads/fotos/810_foto.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 9856
Last-Modified: Fri, 13 Nov 2020 01:48:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fade5f0-2680"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/templates/Synthira/images/friends/ceURPjs.png
37.1.207.217200 OK 4.6 kB URL HTTP/1.1 synthira.ru/templates/Synthira/images/friends/ceURPjs.png
IP 37.1.207.217:0
File type PNG image data, 88 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 7fa9e69de5030e45848c105e53326b6e
e095fa8dda6c961e8a7af1f1cb7dfff49b707547
3ac731dcccbded3bcac8830e6b3745a50476cc40c97fd7be3776803dd8f63f41
GET /templates/Synthira/images/friends/ceURPjs.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 4561
Last-Modified: Wed, 01 Apr 2020 09:04:22 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5e845916-11d1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/uploads/button2bl.png
37.1.207.217200 OK 8.0 kB URL HTTP/1.1 synthira.ru/uploads/button2bl.png
IP 37.1.207.217:0
File type PNG image data, 671 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ed1a35f9d4ed4037932bf5545400842
e84eddc57abe4b7baeb56cbbf402b8995e349add
948283397f7eb8dccb9653ca43eef9c6ea83c3b71592da3facefe4c3fe8c9ed0
GET /uploads/button2bl.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 8017
Last-Modified: Fri, 22 Jul 2022 10:03:10 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "62da75de-1f51"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gtranslate.net/flags/blank.png
172.67.220.164200 OK 95 B URL HTTP/2 gtranslate.net/flags/blank.png
IP 172.67.220.164:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /flags/blank.png HTTP/1.1
Host: gtranslate.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 12:24:26 GMT
content-type: image/png
content-length: 95
last-modified: Wed, 23 May 2018 22:32:56 GMT
etag: "3950a-5f-56ce71dc13b46"
cache-control: max-age=864000
expires: Mon, 28 Nov 2022 05:43:38 GMT
cf-cache-status: HIT
age: 542448
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iuHqwWcTK46WuipokB6knz%2FGRahwU364V6FsS2ysxmH2zVsTAjVJNvAe%2B3f15kg1wBtnSXMNpoe2z0cNzSu09ODaZEFLbExErYc24HNNOLCq9xEJGKnoA4MIzQzl51gCZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f1e1a21b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
synthira.ru/templates/Synthira/images/friends/HcXYEgM.png
37.1.207.217200 OK 3.6 kB URL HTTP/1.1 synthira.ru/templates/Synthira/images/friends/HcXYEgM.png
IP 37.1.207.217:0
File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 56e21daa70ee7d724c28c15d23716a30
99f0f285a64e0852c5a8325baab8b07d02a85ba7
2ab4898f199e67e0b15bc8e314b475258ed97bcece0fc5a5fc60ff3d2bd8beb7
GET /templates/Synthira/images/friends/HcXYEgM.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 3565
Last-Modified: Fri, 06 Nov 2020 10:33:16 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fa5266c-ded"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/templates/Synthira/images/vniz.png
37.1.207.217200 OK 845 B URL HTTP/1.1 synthira.ru/templates/Synthira/images/vniz.png
IP 37.1.207.217:0
File type PNG image data, 54 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash a004838bed6cc0d571c9c31e93007654
b03a0a4aab3db7a002ce7ad67c990ff47740a584
0963bfb99caf7730fc5bba599284aee1a2485ddb02202c9cf008f7ae1c113476
GET /templates/Synthira/images/vniz.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 845
Last-Modified: Sun, 03 Feb 2019 11:50:44 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5c56d594-34d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/templates/Synthira/images/friends/9BtGj72.png
37.1.207.217200 OK 5.5 kB URL HTTP/1.1 synthira.ru/templates/Synthira/images/friends/9BtGj72.png
IP 37.1.207.217:0
File type PNG image data, 88 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 0fae36428552e2e047f6bcd64d847291
8f60b924542e5230e9c234ce8241a382b1d50572
bc4b49db131e25f98db6dcd6cb723cdf3b644629cf626236ab6ff53f1161d057
GET /templates/Synthira/images/friends/9BtGj72.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 5514
Last-Modified: Sun, 03 Feb 2019 08:13:02 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5c56a28e-158a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f43e9c5bf1c76d4ba3b0f1e2a447d02b
8bd676204fb4de3d9548e8718f9db805b53c0843
fb2cc074ce8bffb29f20b84ad0d36d6093754c7efeb2183dd476ec991afbfe0c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5857
Cache-Control: max-age=105986
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Etag: "637e469b-116"
Expires: Fri, 25 Nov 2022 17:50:52 GMT
Last-Modified: Wed, 23 Nov 2022 16:13:15 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
synthira.ru/uploads/fotos/foto_1.jpg
37.1.207.217200 OK 57 kB URL HTTP/1.1 synthira.ru/uploads/fotos/foto_1.jpg
IP 37.1.207.217:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 250x250, components 3\012- data
Hash 2440de097d78b62ac08b22afd922e666
0c8420a9626a443db96b23f959c30804446e8b42
2467318acfad0bf62b37b015c8db6570bef278a252572e2778ce36d2835b13a6
GET /uploads/fotos/foto_1.jpg HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/jpeg
Content-Length: 56746
Last-Modified: Sat, 28 May 2022 12:46:28 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "629219a4-ddaa"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.42200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.42:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 11:52:35 GMT
expires: Thu, 24 Nov 2022 12:52:35 GMT
cache-control: public, max-age=3600
age: 1911
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.imgur.com/reGFv3d.png
151.101.84.193200 OK 349 B IP 151.101.84.193:0
File type PNG image data, 12 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 16d1014fc9a4b3cb4835eab80cb0efc1
fbc4045c992133677ac1cbb0fe44950306160c4d
95443586e2d26838261656bbc4e5adb34d8b41528b5bf359cafc78226e221bc4
GET /reGFv3d.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 01 Sep 2021 18:05:51 GMT
etag: "16d1014fc9a4b3cb4835eab80cb0efc1"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 24 Nov 2022 12:24:26 GMT
age: 4390545
x-served-by: cache-iad-kjyo7100032-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 18, 19
x-timer: S1669292667.652163,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 349
X-Firefox-Spdy: h2
i.imgur.com/IIZVvRO.jpg
151.101.84.193200 OK 142 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 1920x1080, components 3\012- data
Size 142 kB (142325 bytes)
Hash 70b2261da2ecd0732d12167f196b4bfb
19f8c496c0572ae0b407bef6352ae14b6e4cb08d
ffa529f568fe8510a69f6ddb4fbd84db735cb3fe32549f8761c59c8eaa51d377
GET /IIZVvRO.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 04 Mar 2021 10:38:57 GMT
etag: "70b2261da2ecd0732d12167f196b4bfb"
x-amz-storage-class: STANDARD_IA
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 24 Nov 2022 12:24:26 GMT
age: 3045202
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 722, 3
x-timer: S1669292667.652034,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 142325
X-Firefox-Spdy: h2
synthira.ru/templates/Synthira/images/x2Ez3KN.png
37.1.207.217200 OK 353 B URL HTTP/1.1 synthira.ru/templates/Synthira/images/x2Ez3KN.png
IP 37.1.207.217:0
File type PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash ae9cb14d2c14b8086df447ecfa874a3e
3fec6dea66a93e4cf2187955605efbcdcdfa6be2
0d9f7563c169ba052a4baa15a60f512be7b643602c7616907dbd16eb4760ea22
GET /templates/Synthira/images/x2Ez3KN.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/templates/Synthira/css/styles.css?v121
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/png
Content-Length: 353
Last-Modified: Sun, 08 Nov 2020 14:50:41 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fa805c1-161"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 67 kB URL HTTP/2 use.fontawesome.com/releases/v5.3.1/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 67400, version 1.0\012- data
Hash 14a08198ec7d1eb96d515362293fed36
965d78c34637d1bdab6277805faecb6caa959669
ca3ea16761b7d443c64cfd99dd1cf8aa84790a25bb4709582935956fe71d014d
GET /releases/v5.3.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 12:24:26 GMT
content-type: font/woff2
content-length: 67400
x-amz-id-2: cq5FiVM13hE3nPDpFnDhIXAYB8b3fF6SWsOLumNsKXh6pmUqcqTVkjHfCl368jtCvFbZYRbzMAo=
x-amz-request-id: EAVBTBCCGRNCXPFF
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:33 GMT
etag: "14a08198ec7d1eb96d515362293fed36"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29843050
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OYs7x0GIwFoepEtDnB1mfA%2FXLEVLQmXnejBa4LOoxA9hJQx4HUoJgKuSMYPdB5L7KlTy7BLLSBz70vKO%2FCO439UeIWp1S%2BKOeBzqKKtTUQKK1UNxM2P24uHLYlLonnz80AldJ1j1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f21f1edeb07692-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.3.1/webfonts/fa-regular-400.woff2
172.64.132.15200 OK 15 kB URL HTTP/2 use.fontawesome.com/releases/v5.3.1/webfonts/fa-regular-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 14868, version 1.0\012- data
Hash 949a2b066ec37f5a384712fc7beaf2f1
2554caf9e1af4c824a2f0e5e7a139ce555381b18
48810f2ca5c1a9cb285177a493b18a3ca22c177afeb9b242a592788eafc606f2
GET /releases/v5.3.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 12:24:26 GMT
content-type: font/woff2
content-length: 14868
x-amz-id-2: 33wSsZtBxAHNg15c/DAa2Ym8Zt2qyp2E9BJqAfWT0kWkB1v6cuIoPQcnEwOKXv/uhtVSASGnruY=
x-amz-request-id: SZVGNJM0266TVEP6
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:42:33 GMT
etag: "949a2b066ec37f5a384712fc7beaf2f1"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 126486
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MyH8KJeYWBWnbbG7QG49dHu1P0pdr1%2BU6DYYmmGu4DrJHNsBeeaPBQox6dZCdgJDbKakjTunR1RNCxv6tvXJF6M57hs%2F7yTSsxO7M9yvwTVlTQx3Vkg83Q1OMpHokhvT5P5W%2F215"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f21f1efef17692-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.195200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:19:49 GMT
expires: Fri, 24 Nov 2023 06:19:49 GMT
cache-control: public, max-age=31536000
age: 21877
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 60618
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Hash 3d7f7413fca69bff4d231ebdc50aaab0
cb18e7943b6a8a0e3672d7242197c19a226b92e8
6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:51:51 GMT
expires: Thu, 23 Nov 2023 18:51:51 GMT
cache-control: public, max-age=31536000
age: 63155
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
216.58.207.195200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9692, version 1.0\012- data
Hash d572b531f0823555818998b466028e08
788073fb7656c7b44a3d67468fc355ceb618290e
bddd7c9debeee9bccc8d6a0f0990743d3db200fe23fc08dbad9e60a007e52919
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19a7DRs5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9692
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 23:14:31 GMT
expires: Wed, 22 Nov 2023 23:14:31 GMT
cache-control: public, max-age=31536000
age: 133795
last-modified: Tue, 19 Apr 2022 18:44:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ced559b79105e3f1f95485b0650389e0
29b90ffc450e9c11804086e3c4c41661a311c22a
56c1b0370fff0d3d332ad86666cf0c9488f3242ffcbf62d91700f36cca5bcfb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56C1B0370FFF0D3D332AD86666CF0C9488F3242FFCBF62D91700F36CCA5BCFB3"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11332
Expires: Thu, 24 Nov 2022 15:33:18 GMT
Date: Thu, 24 Nov 2022 12:24:26 GMT
Connection: keep-alive
dominantroute.com/bens/vinos.js?24642&u=null&a=0.7598070998147428
193.200.64.20200 OK 140 kB URL HTTP/1.1 dominantroute.com/bens/vinos.js?24642&u=null&a=0.7598070998147428
IP 193.200.64.20:0
ASN #6681 Rozetka Sp. z o.o.
File type ASCII text, with very long lines (727)
Size 140 kB (140149 bytes)
Hash 2543cc8d8572dbfd0f194c0c31d06612
8f0a861578e806221eba030165132bff22b859c9
6e3b909cc1feae2c57b76484c2ce7c9c1c99acbfe84fc9f1e857bbce3f8100e3
GET /bens/vinos.js?24642&u=null&a=0.7598070998147428 HTTP/1.1
Host: dominantroute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=16692921501532635802; expires=Sat, 23-Nov-2024 12:24:27 GMT; Max-Age=63072000; path=/; samesite=None; domain=.dominantroute.com; secure
synthira.ru/templates/Synthira/images/favicon.ico
37.1.207.217200 OK 2.6 kB URL HTTP/1.1 synthira.ru/templates/Synthira/images/favicon.ico
IP 37.1.207.217:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 20bcb09077d2379ef2e64f3b9fe0a70b
004bdf6ea481c63cd239171209cddaa2a256e4b0
00f74fe1abd482ddfcf1b174ce39c7d70dae10f363634c84090129d8c03c3440
GET /templates/Synthira/images/favicon.ico HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: image/x-icon
Content-Length: 2550
Last-Modified: Sun, 09 Dec 2018 06:25:42 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5c0cb566-9f6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/engine/modules/light_chat/ajax/index.php
37.1.207.217200 OK 3.0 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/ajax/index.php
IP 37.1.207.217:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1986), with CRLF line terminators
Hash 6d2c66393d662a1f146d4f7b6291d085
1025c717259ae8bfa2b60262793068f4d940fd5c
5efd2e167b56f8666f43e04468615de705a3bb152e627ec610f5fc0f6b09d7b5
POST /engine/modules/light_chat/ajax/index.php HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://synthira.ru
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
synthira.ru/engine/modules/light_chat/ajax/index.php
37.1.207.217200 OK 3.0 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/ajax/index.php
IP 37.1.207.217:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1986), with CRLF line terminators
Hash 6d2c66393d662a1f146d4f7b6291d085
1025c717259ae8bfa2b60262793068f4d940fd5c
5efd2e167b56f8666f43e04468615de705a3bb152e627ec610f5fc0f6b09d7b5
POST /engine/modules/light_chat/ajax/index.php HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://synthira.ru
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:26 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js
142.250.74.163200 OK 167 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1329)
Size 167 kB (167119 bytes)
Hash e269c265007dcb5ecc3f2aa6155bc52a
cb8eed3b2684c2767bf45d652f6d630740051d04
85d7f1b40b063a3a07449151918eb63b85f2c6ff5d54936618a1a737ab5c7dbf
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 167119
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 15:34:37 GMT
expires: Thu, 23 Nov 2023 15:34:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 74990
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 61d0149cedc27469a3124f907d1967cc
25f3042358cee457561497262df1dee8c0d3053a
e2cf8a2bbf5c75f38564186137fd1f559b336f123d50ae150298ab6b9cfefa93
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 28 Nov 2022 11:11:45 GMT
ETag: "25f3042358cee457561497262df1dee8c0d3053a"
Last-Modified: Thu, 24 Nov 2022 11:11:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2941
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f220af80b4d-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 72bfdf41bd7c2cbf8df37936d704112b
0698af3b8caadde4e8d2ad36f260eddc7035c523
99e5b600caaf243fc6f52c167f500b18f6dc2d24fff763ed2f195574513ed01e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:50:25 GMT
ETag: "0698af3b8caadde4e8d2ad36f260eddc7035c523"
Last-Modified: Thu, 24 Nov 2022 10:50:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1876
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f223b9a0afa-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash cf1dab1f8cf595edd180e80c44edb6e4
8a11b98248054b5e5608a5a356ba5bf77c1bd772
9bf0a3b905f7cd45efaefdaedd64317d45c013b2ccbf88b7657056a6b3369f36
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 09:26:10 GMT
ETag: "8a11b98248054b5e5608a5a356ba5bf77c1bd772"
Last-Modified: Thu, 24 Nov 2022 09:26:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3374
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f223ea4b4fd-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash cf1dab1f8cf595edd180e80c44edb6e4
8a11b98248054b5e5608a5a356ba5bf77c1bd772
9bf0a3b905f7cd45efaefdaedd64317d45c013b2ccbf88b7657056a6b3369f36
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 09:26:10 GMT
ETag: "8a11b98248054b5e5608a5a356ba5bf77c1bd772"
Last-Modified: Thu, 24 Nov 2022 09:26:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3374
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f224ba90afa-OSL
counter.yadro.ru/hit?t53.5;r;s1280*1024*24;uhttps%3A//synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987;h%u0427%u0438%u0442%20%u043D%u0430%20Among%20Us%20%u2013%20Hackermode%20v30.37%20%u0434%u043B%u044F%20%u041F%u041A%20%2808.03.2021%29%20%u0434%u043B%u044F%20Among%20Us%2030.37%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20Among%20Us%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20%u0438%u0433%u0440;0.989057957703301
88.212.201.198200 OK 456 B URL HTTP/1.1 counter.yadro.ru/hit?t53.5;r;s1280*1024*24;uhttps%3A//synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987;h%u0427%u0438%u0442%20%u043D%u0430%20Among%20Us%20%u2013%20Hackermode%20v30.37%20%u0434%u043B%u044F%20%u041F%u041A%20%2808.03.2021%29%20%u0434%u043B%u044F%20Among%20Us%2030.37%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20Among%20Us%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20%u0438%u0433%u0440;0.989057957703301
IP 88.212.201.198:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash 52c62cbca8b492577c825d1e2b8f4c7d
42f8db18770fcce381aa5d306a275060be6825c3
5b0520878978f07dd17eb582f0da0d5e3c20a5bb364703a64a21bcb3a31ab80b
GET /hit?t53.5;r;s1280*1024*24;uhttps%3A//synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987;h%u0427%u0438%u0442%20%u043D%u0430%20Among%20Us%20%u2013%20Hackermode%20v30.37%20%u0434%u043B%u044F%20%u041F%u041A%20%2808.03.2021%29%20%u0434%u043B%u044F%20Among%20Us%2030.37%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20Among%20Us%20-%20%u041C%u043E%u0434%u044B%20%u0434%u043B%u044F%20%u0438%u0433%u0440;0.989057957703301 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: image/gif
Content-Length: 456
Connection: keep-alive
Expires: Tue, 23 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Thu, 24 Nov 2022 12:24:27 GMT
access-control-allow-origin: *
etag: "637b3777-11e33"
expires: Thu, 24 Nov 2022 13:24:27 GMT
last-modified: Mon, 21 Nov 2022 11:31:51 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 937 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash c7756251898aa1ae086f50a5a7695a4e
d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d
fcc73a292a474daef462baec143ba6a14f2e7b77aa08aa207eed847fc8e03976
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Mon, 28 Nov 2022 08:45:06 GMT
ETag: "d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d"
Last-Modified: Thu, 24 Nov 2022 08:45:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1615
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f255ea00afa-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 937 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash c7756251898aa1ae086f50a5a7695a4e
d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d
fcc73a292a474daef462baec143ba6a14f2e7b77aa08aa207eed847fc8e03976
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Mon, 28 Nov 2022 08:45:06 GMT
ETag: "d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d"
Last-Modified: Thu, 24 Nov 2022 08:45:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1615
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f255a9ab4fd-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 937 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash c7756251898aa1ae086f50a5a7695a4e
d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d
fcc73a292a474daef462baec143ba6a14f2e7b77aa08aa207eed847fc8e03976
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Mon, 28 Nov 2022 08:45:06 GMT
ETag: "d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d"
Last-Modified: Thu, 24 Nov 2022 08:45:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1615
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f256eab0afa-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 937 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash c7756251898aa1ae086f50a5a7695a4e
d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d
fcc73a292a474daef462baec143ba6a14f2e7b77aa08aa207eed847fc8e03976
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:27 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Mon, 28 Nov 2022 08:45:06 GMT
ETag: "d13dfb025a0441a4faff9bd4cb4a2fa189a01a2d"
Last-Modified: Thu, 24 Nov 2022 08:45:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1615
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f256ab8b4fd-OSL
yastatic.net/partner-code-bundles/685034/87d362be16affc011c68.js
178.154.131.215200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/685034/87d362be16affc011c68.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65494)
Hash d97e5b87d0f97a75fc104f7dd090b646
11dcb17dde160e1aca8610886ac9e8f0d3b3275c
85827584572e5c65fe63128419bbc41ef4ec132118de8286653760673b93e654
GET /partner-code-bundles/685034/87d362be16affc011c68.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:27 GMT
content-type: text/javascript; charset=utf-8
content-length: 23497
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "d97e5b87d0f97a75fc104f7dd090b646"
expires: Sat, 23 Nov 2052 18:59:16 GMT
last-modified: Wed, 23 Nov 2022 07:52:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.215200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.215:0
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:27 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Fri, 24 Nov 2023 18:12:42 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: f5d4f1d4e24f495e
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/685034/3521127290410543dbe9.js
178.154.131.215200 OK 4.8 kB URL HTTP/2 yastatic.net/partner-code-bundles/685034/3521127290410543dbe9.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (14344)
Hash 3eb6d0b5098603a22274a194690a0e53
3069b67010341d34a175f4ab04ddc9b9beb5608d
ce28875b0d7a74d2febd9f48318895d61be7bbd40f19c7a3f0a7c6db7dbfd38f
GET /partner-code-bundles/685034/3521127290410543dbe9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:27 GMT
content-type: text/javascript; charset=utf-8
content-length: 4802
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3eb6d0b5098603a22274a194690a0e53"
expires: Sat, 23 Nov 2052 18:59:18 GMT
last-modified: Wed, 23 Nov 2022 07:52:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.215200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:27 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sat, 23 Nov 2052 18:59:29 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/48543872/1?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/48543872/1?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 60a4f3018d3ee08aec7384d4bc78d11f
fb678b5d8b58166907b2a419cbdc575356c3e3c5
02ff149028c0ec825546051a69c154105cc8a7e6db1b38fbf9ee1a056d87d0d1
GET /watch/48543872/1?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Thu, 24 Nov 2022 12:24:27 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:27 GMT
last-modified: Thu, 24-Nov-2022 12:24:27 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 10:41:08 GMT
expires: Thu, 24 Nov 2022 12:41:08 GMT
cache-control: public, max-age=7200
age: 6200
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3830
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3830
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3830
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:08:16 GMT
age: 51372
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:10:24 GMT
age: 18844
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3830
Expires: Thu, 24 Nov 2022 13:28:18 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 891d19eb042be6fd5d021ff08db2dfcc
c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3
3efff3d6a8bfa358652bf73ae26ab233ed8c2ca37dab1ff2f2298cd805b88bc1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9ad1430-c833-4f58-99a3-6a959cced2fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9099
x-amzn-requestid: d828c8f5-3ff1-4e20-822f-32d9ad7a0d7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cExDeGjKIAMFQHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9549-71d957297c3ec4b01633b1ce;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:48:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZXi-qHYx7QoMQZAsZzEW099laTRSyxjhe8stloZ5ZhlRfw4W8sebjw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:13:58 GMT
etag: "c35c0a9bf6ad7f53e3aadaffb8f3a03c4f9457e3"
content-type: image/jpeg
age: 51030
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.46200 OK 30 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.46:0
Hash 2c1cd2b187483d6563e4cec60836def2
0b8a5c3ef614597fa7f8d552c6383588b8227275
0e2835176e6aa830721d5dd2030c5c671a266f0b700a44d938a718cfe9b902e7
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 12:24:26 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+522; expires=Sat, 23-Nov-2024 12:24:26 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YJuHCuUgkLuFFiQUlrPWgv9grHznufMTU08hi4ZMpQTBmou6BGWrhQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:52 GMT
age: 52596
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28381329eca6c426a8b05fcdef4aafcc
a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a
4fc8414d39bbaacb1e6575924bd0bbb9373d78b177022f7d3c6457829abffd06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08efdc1b-e7ef-4a2f-b199-9a633b00cef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8748
x-amzn-requestid: 864da50a-44bb-4d20-b499-08c2a140871e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtENmoAMFqKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-2705cc956f2c2aa5535533b0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xT0IorkRpXysoYMnugcrV40YaAxoRPjLmkPcv1ElteP_-rNZ1c6fog==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:48:57 GMT
age: 52531
etag: "a1fbb6da386cf2eef8b76a65438cf9c6bd741f7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.imgur.com/z4ifygZ.jpeg
151.101.84.193200 OK 20 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 286x136, components 3\012- data
Hash ea095f7aca56b012a2c579b33852eb13
64d4bea479768df7cc3a997aef34bee02305fbe2
d11ac31489fe1e68ca8aa65aaeaa8e5f79c64be6d459a951fe2728cb5c5b30b3
GET /z4ifygZ.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 23 Nov 2022 19:00:31 GMT
etag: "ea095f7aca56b012a2c579b33852eb13"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 24 Nov 2022 12:24:28 GMT
age: 62638
x-served-by: cache-iad-kcgs7200143-IAD, cache-bma1676-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 40
x-timer: S1669292668.388503,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 19748
X-Firefox-Spdy: h2
i.ytimg.com/vi/dDfrMprGF2c/default.jpg
142.250.74.86200 OK 3.7 kB URL HTTP/1.1 i.ytimg.com/vi/dDfrMprGF2c/default.jpg
IP 142.250.74.86:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 3c51da8ca0d3e75818d00f4a5779fc15
1b6c485d525b07fb038482645b4a86d944b462c3
f52d324844dcfb2547a2489fa068075d42ba0b8d8c91884df7fca4b76f96d264
GET /vi/dDfrMprGF2c/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube"
Report-To: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
Timing-Allow-Origin: *
Content-Length: 3723
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 11:54:47 GMT
Expires: Thu, 24 Nov 2022 13:54:47 GMT
Cache-Control: public, max-age=7200
ETag: "0"
Content-Type: image/jpeg
Age: 1781
synthira.ru/uploads/fotos/foto_4765.jpg
37.1.207.217200 OK 8.4 kB URL HTTP/1.1 synthira.ru/uploads/fotos/foto_4765.jpg
IP 37.1.207.217:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 101x101, components 3\012- data
Hash 309aa33d145f5d2cfd8fdcf7ac24a805
09c2425630dea1c04eea9a1a5f92d4dd7ea5a750
5e3b5405ebcf9f6aec503f7fbceb1a568f3010abccb3305751a4b1fd8b0cae02
GET /uploads/fotos/foto_4765.jpg HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/jpeg
Content-Length: 8378
Last-Modified: Thu, 30 Sep 2021 14:24:58 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6155c8ba-20ba"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/uploads/fotos/foto_3382.webp
37.1.207.217200 OK 5.4 kB URL HTTP/1.1 synthira.ru/uploads/fotos/foto_3382.webp
IP 37.1.207.217:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 66x101, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4d5ca6d275bc6698d226eca602febabf
1aa09afd918eb193b4650a5ec131bb4a33bcb74e
d98d29b4257afa6913482610691967aec7eedd7ea145f688755613e259673bff
GET /uploads/fotos/foto_3382.webp HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/webp
Content-Length: 5416
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Tue, 17 Nov 2020 13:48:30 GMT
ETag: "1528-5b44dbffc0780"
Accept-Ranges: bytes
synthira.ru/engine/modules/light_chat/smilies/1/3_147.gif
37.1.207.217200 OK 3.7 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/smilies/1/3_147.gif
IP 37.1.207.217:0
File type GIF image data, version 89a, 43 x 28\012- data
Hash cbb6aa7137276f52b437d3e254712e56
5f2cf34253168b5861ca20024b3232bb1eab74eb
8b017dc133a86968f1f13d60f6fb92f1483f7636d7a060dbf931de7b79dee4eb
GET /engine/modules/light_chat/smilies/1/3_147.gif HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/gif
Content-Length: 3683
Last-Modified: Fri, 13 Nov 2020 08:49:04 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fae4880-e63"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/uploads/fotos/foto_14344.jpg
37.1.207.217200 OK 18 kB URL HTTP/1.1 synthira.ru/uploads/fotos/foto_14344.jpg
IP 37.1.207.217:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 85x150, components 3\012- data
Hash 570d9a5bf7d1c8b18dc70d44b8dc3d21
886df23b431166891cf30cc50a284925cfb4c792
daeb45fe4ccc1fce18930eebf9e0284c786db1f6a4ed4c2b274d62f55d74a23a
GET /uploads/fotos/foto_14344.jpg HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/jpeg
Content-Length: 18524
Last-Modified: Sat, 05 Nov 2022 18:27:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6366ab14-485c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09bde3775089d3aadc3c5f5e2e6b03be
609b54d61f2c84b327b12c5c965b5e69f9f808e2
23e1d4a8221640527678fff7a73bfc977720ee501c28d75c3a7da842cbbed11b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23E1D4A8221640527678FFF7A73BFC977720EE501C28D75C3A7DA842CBBED11B"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Thu, 24 Nov 2022 13:18:48 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
yastatic.net/s3/games-static/favicons/icon-192.png
178.154.131.215200 OK 24 kB URL HTTP/2 yastatic.net/s3/games-static/favicons/icon-192.png
IP 178.154.131.215:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7819c957eaa80af5bf14f760d49b64a7
93b670523acd14f884c3a538d59d408da0888a6c
ca78c114bba40b141a59c55a9d3fb6db7672bc3effd4337f2b1ce512b4d06c9e
GET /s3/games-static/favicons/icon-192.png HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: image/png
content-length: 24134
access-control-allow-origin: *
cache-control: public, max-age=216013
etag: "7819c957eaa80af5bf14f760d49b64a7"
expires: Sun, 27 Nov 2022 00:23:26 GMT
last-modified: Thu, 14 Apr 2022 12:22:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: fec2b9b7f2f7ed9d
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/685034/848feb6dbfc2354c727c.js
178.154.131.215200 OK 5.1 kB URL HTTP/2 yastatic.net/partner-code-bundles/685034/848feb6dbfc2354c727c.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (14785)
Hash b046e2a38a8e4175ea38256e1a028ef3
362718f52c404f7a4b1bac45a604ccbfd313dda3
114440e8bccf79fceea4b274933c42dddf4914ff860755395cc96389bf578687
GET /partner-code-bundles/685034/848feb6dbfc2354c727c.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 5106
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "b046e2a38a8e4175ea38256e1a028ef3"
expires: Sat, 23 Nov 2052 18:59:49 GMT
last-modified: Wed, 23 Nov 2022 07:52:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
synthira.ru/uploads/fotos/foto_5971.jpg
37.1.207.217200 OK 28 kB URL HTTP/1.1 synthira.ru/uploads/fotos/foto_5971.jpg
IP 37.1.207.217:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 150x150, components 3\012- data
Hash 5457963cad7349b9c23ba499552d82d4
90eacb71d4534721e39d78874fcb585171d1d73d
4e70296025ec8ccbffebc19fdc52b1f29d94d50fe0529a3dc3a5d78d8b74fdda
GET /uploads/fotos/foto_5971.jpg HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/jpeg
Content-Length: 27541
Last-Modified: Thu, 01 Sep 2022 09:58:11 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63108233-6b95"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
yastatic.net/partner-code-bundles/685034/2146f00900f09bf4180d.js
178.154.131.215200 OK 3.2 kB URL HTTP/2 yastatic.net/partner-code-bundles/685034/2146f00900f09bf4180d.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (9818)
Hash 73fbef47fa2d07e41bd4370974790286
04ac999026dc308259fc77a418b1de686f5dc17a
762e4df2ff53261cf4dcf6aeceef63311f823b0d9c4ca9138480527292b8ce04
GET /partner-code-bundles/685034/2146f00900f09bf4180d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 3171
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "73fbef47fa2d07e41bd4370974790286"
expires: Sat, 23 Nov 2052 19:00:13 GMT
last-modified: Wed, 23 Nov 2022 07:52:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
i.yapx.ru/U5T3v.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T3v.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T3v.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09bde3775089d3aadc3c5f5e2e6b03be
609b54d61f2c84b327b12c5c965b5e69f9f808e2
23e1d4a8221640527678fff7a73bfc977720ee501c28d75c3a7da842cbbed11b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23E1D4A8221640527678FFF7A73BFC977720EE501C28D75C3A7DA842CBBED11B"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Thu, 24 Nov 2022 13:18:48 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
yastatic.net/partner-code-bundles/685034/6a58479c526108674763.js
178.154.131.215200 OK 6.7 kB URL HTTP/2 yastatic.net/partner-code-bundles/685034/6a58479c526108674763.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (24122)
Hash 48ea096e968653addd129dc79db3d039
f3ec0f8ce14b2b0eeee013b80cc4f5d6ec349a49
7e6be72a0399f57613c9aa92277ef3d648b3751a1e708f64c58dcb6df43ca0c6
GET /partner-code-bundles/685034/6a58479c526108674763.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 6732
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "48ea096e968653addd129dc79db3d039"
expires: Sat, 23 Nov 2052 18:56:56 GMT
last-modified: Wed, 23 Nov 2022 07:52:49 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
i.yapx.ru/U5T4B.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T4B.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T4B.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09bde3775089d3aadc3c5f5e2e6b03be
609b54d61f2c84b327b12c5c965b5e69f9f808e2
23e1d4a8221640527678fff7a73bfc977720ee501c28d75c3a7da842cbbed11b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23E1D4A8221640527678FFF7A73BFC977720EE501C28D75C3A7DA842CBBED11B"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Thu, 24 Nov 2022 13:18:48 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
synthira.ru/engine/modules/light_chat/smilies/1/3_135.gif
37.1.207.217200 OK 1.0 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/smilies/1/3_135.gif
IP 37.1.207.217:0
File type GIF image data, version 89a, 33 x 30\012- data
Hash 8e6983c6372516bf3860ac047e106119
32b700f2ab48d69f79364b21d58502b8aeccbf6d
fa552054bb7d1fe20437f330a8c775fc74532a0ca47631ac0a5c9e0e44a2c1a1
GET /engine/modules/light_chat/smilies/1/3_135.gif HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/load/drugie_igry/among_us/chit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020/439-1-0-10987
Connection: keep-alive
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/gif
Content-Length: 1012
Last-Modified: Fri, 13 Nov 2020 08:49:04 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fae4880-3f4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
synthira.ru/engine/modules/light_chat/assets/video-play.png
37.1.207.217200 OK 1.4 kB URL HTTP/1.1 synthira.ru/engine/modules/light_chat/assets/video-play.png
IP 37.1.207.217:0
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 413658342a153e8c35293eac97657ef4
ebfa52cfa85fc6ebed31b7b967c9849d5c71b8d8
c0f9ef3d5509a62c7a59e86c90ab086e2297e8617914c850247304fb3068b716
GET /engine/modules/light_chat/assets/video-play.png HTTP/1.1
Host: synthira.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/engine/modules/light_chat/assets/styles.css?v6
Cookie: PHPSESSID=thhqd0p4k90ik4svd7r736edpq; u_count=%5B0%2C0%5D; _ym_uid=1669292667699686716; _ym_d=1669292667; _ga_DECXCT9RNG=GS1.1.1669292667.1.0.1669292667.0.0.0; _ga=GA1.2.968258343.1669292668; _gid=GA1.2.1411169093.1669292668; _gat_gtag_UA_121208101_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: image/png
Content-Length: 1434
Last-Modified: Fri, 13 Nov 2020 08:49:04 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "5fae4880-59a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
i.yapx.ru/U5T3y.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T3y.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T3y.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09bde3775089d3aadc3c5f5e2e6b03be
609b54d61f2c84b327b12c5c965b5e69f9f808e2
23e1d4a8221640527678fff7a73bfc977720ee501c28d75c3a7da842cbbed11b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23E1D4A8221640527678FFF7A73BFC977720EE501C28D75C3A7DA842CBBED11B"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Thu, 24 Nov 2022 13:18:48 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09bde3775089d3aadc3c5f5e2e6b03be
609b54d61f2c84b327b12c5c965b5e69f9f808e2
23e1d4a8221640527678fff7a73bfc977720ee501c28d75c3a7da842cbbed11b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23E1D4A8221640527678FFF7A73BFC977720EE501C28D75C3A7DA842CBBED11B"
Last-Modified: Thu, 24 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3260
Expires: Thu, 24 Nov 2022 13:18:48 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
i.yapx.ru/U5T31.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T31.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T31.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
yandex.ru/cycounter?synthira.ru&theme=dark&lang=ru
77.88.55.70200 OK 1.6 kB URL HTTP/2 yandex.ru/cycounter?synthira.ru&theme=dark&lang=ru
IP 77.88.55.70:0
File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash c5270bc849e48df3e252bd46ad412de0
0ad02577b0ba72836c4c2ea812eb53d10664b457
f2ba774f0d12925d18571f572ac4137af4b0d2efdf27bfe5121bbf11473c81d3
GET /cycounter?synthira.ru&theme=dark&lang=ru HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:27 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:27 GMT; SameSite=None; Secure
_yasc=CQK1+OZ+KgBcDGI/EAQnc1LJ8Hq5bboTzvWHhaT7WTsX5m7IHcFNgolSGDHpKA==; domain=.yandex.ru; path=/; expires=Sun, 21-Nov-2032 12:24:27 GMT; secure
i=CU5iXyd58KlAXa3i81DkR+XzgY+8KhCdbyIVuHsY1nr5yI4E3cEKn6MhGSLBBJEYDjri4CJdQg2Ii0BQYwaGTzX8EHM=; Expires=Sat, 23-Nov-2024 12:24:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
expires: Thu, 01 Dec 2022 07:55:16 GMT
x-xss-protection: 1; mode=block
last-modified: Thu, 17 Nov 2022 07:55:16 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/png
X-Firefox-Spdy: h2
i.yapx.ru/U5T30.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T30.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T30.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
i.yapx.ru/U5T4I.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T4I.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T4I.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
i.yapx.ru/U5T4M.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T4M.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T4M.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
i.yapx.ru/U5T37.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5T37.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5T37.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 21bfa59eb4dd77d6705a00e51f0f3cee
bad291fb087cbbd40802c8357832149380ba15e2
434f9c0fc5fd1b96eb27b6fd76cdc3b0d6a0fbf77b08fb64d77b2f0b643b30d2
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:19:25 GMT
ETag: "bad291fb087cbbd40802c8357832149380ba15e2"
Last-Modified: Thu, 24 Nov 2022 10:19:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 675
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2b4d220afa-OSL
i.yapx.ru/U5TJH.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5TJH.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5TJH.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 21bfa59eb4dd77d6705a00e51f0f3cee
bad291fb087cbbd40802c8357832149380ba15e2
434f9c0fc5fd1b96eb27b6fd76cdc3b0d6a0fbf77b08fb64d77b2f0b643b30d2
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:19:25 GMT
ETag: "bad291fb087cbbd40802c8357832149380ba15e2"
Last-Modified: Thu, 24 Nov 2022 10:19:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 675
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2b5d330afa-OSL
i.yapx.ru/U5TFu.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5TFu.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5TFu.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
i.yapx.ru/U5TCD.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5TCD.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5TCD.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
i.yapx.ru/U5TF0.jpg
65.21.143.8301 Moved Permanently 162 B IP 65.21.143.8:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /U5TF0.jpg HTTP/1.1
Host: i.yapx.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 24 Nov 2022 12:24:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://i.yapx.cc/U5TF0.jpg
Expires: Fri, 06 Jan 2023 04:24:28 GMT
Cache-Control: max-age=3686400
avatars.mds.yandex.net/get-direct/4576471/DjlvSzuimUl3t8gmvEsPUA/y300
87.250.247.182200 OK 11 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/4576471/DjlvSzuimUl3t8gmvEsPUA/y300
IP 87.250.247.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8ac1a8d48a200d3e61567f86a84a8657
2392669cb16cdeadc0a6465bf39b1915e31eae6f
f5737d03b8ab39fead5245d364588723fa5a5e3316b66d3efc40e8b0de976ac5
GET /get-direct/4576471/DjlvSzuimUl3t8gmvEsPUA/y300 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: image/webp
content-length: 10864
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 11 Aug 2021 14:14:17 GMT
cache-control: max-age=31536000,immutable
x-request-id: 6b97d1c400be0ca
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
178.154.131.215200 OK 6.3 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
IP 178.154.131.215:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23297)
Hash eb77de48712912aadc9aa8171ac75ede
f375e4ed6b585c4e30b2d56f4f41c3beed909349
437ee0c22002ccd77158d7a7018113f26384324158ab3cef65373007f29b1bcf
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Sat, 23 Nov 2052 18:55:34 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-vh/1419454/2a0000017ece93953d157be0cb7cbd45acf8/orig
87.250.247.182200 OK 85 kB URL HTTP/2 avatars.mds.yandex.net/get-vh/1419454/2a0000017ece93953d157be0cb7cbd45acf8/orig
IP 87.250.247.182:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc58.134.100", baseline, precision 8, 1920x1080, components 3\012- data
Hash 0aae73dab9b2bdd05cfa64983ca6929f
b9b5b6b4fd5e34b32008025cef7f0ac3e9c5d988
c23196b2757bacc7790d68bb145fe67011f193d45400e810f0b1380d7b50fb5f
GET /get-vh/1419454/2a0000017ece93953d157be0cb7cbd45acf8/orig HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: image/jpeg
content-length: 84647
last-modified: Sun, 06 Feb 2022 10:28:06 GMT
cache-control: max-age=86400,immutable
x-request-id: ac0010d1c7a852e
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DECXCT9RNG>m=2oeb90&_p=1605280762&cid=968258343.1669292668&ul=en-us&sr=1280x1024&_s=1&sid=1669292667&sct=1&seg=0&dl=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&dt=%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DECXCT9RNG>m=2oeb90&_p=1605280762&cid=968258343.1669292668&ul=en-us&sr=1280x1024&_s=1&sid=1669292667&sct=1&seg=0&dl=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&dt=%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DECXCT9RNG>m=2oeb90&_p=1605280762&cid=968258343.1669292668&ul=en-us&sr=1280x1024&_s=1&sid=1669292667&sct=1&seg=0&dl=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&dt=%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://synthira.ru
date: Thu, 24 Nov 2022 12:24:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yastatic.net/vas-bundles/683987/bundles-es2017/loader.bundle.js
178.154.131.215200 OK 166 kB URL HTTP/2 yastatic.net/vas-bundles/683987/bundles-es2017/loader.bundle.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 166 kB (165717 bytes)
Hash 94ff07194ba82aec4a974c1198bd0c53
30c100c9dee222bd866958828cecfd9ca72009dd
c161e78f5a3defb290e30c77f87d6086c51c6d1b75640c7578036f7eb6ff2bec
GET /vas-bundles/683987/bundles-es2017/loader.bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 165717
access-control-allow-origin: *
cache-control: max-age=946708560
content-encoding: br
etag: "94ff07194ba82aec4a974c1198bd0c53"
expires: Sat, 23 Nov 2052 18:56:56 GMT
last-modified: Mon, 21 Nov 2022 12:52:38 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=946708560; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 768ddfc89e55162c8a7c275052dca34a
3ad0cf7f064b8115f3b6393d273a57d28786d62e
6c87dd00d78240a3df82cf035254ebe71d12945873118d50e2a61bd7a96daa6b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6C87DD00D78240A3DF82CF035254EBE71D12945873118D50E2A61BD7A96DAA6B"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17939
Expires: Thu, 24 Nov 2022 17:23:27 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 88afe35c5b8e87ff0757d5f0e5a57b8e
739990c5d4118695c16cbcb8e66b04cf25774fd1
fff96c3997d0f0cdb9cdf68a7dde6dba559bc4ff23d8735cf3e6204aad51babb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FFF96C3997D0F0CDB9CDF68A7DDE6DBA559BC4FF23D8735CF3E6204AAD51BABB"
Last-Modified: Tue, 22 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5692
Expires: Thu, 24 Nov 2022 13:59:20 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 88afe35c5b8e87ff0757d5f0e5a57b8e
739990c5d4118695c16cbcb8e66b04cf25774fd1
fff96c3997d0f0cdb9cdf68a7dde6dba559bc4ff23d8735cf3e6204aad51babb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FFF96C3997D0F0CDB9CDF68A7DDE6DBA559BC4FF23D8735CF3E6204AAD51BABB"
Last-Modified: Tue, 22 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5696
Expires: Thu, 24 Nov 2022 13:59:24 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 88afe35c5b8e87ff0757d5f0e5a57b8e
739990c5d4118695c16cbcb8e66b04cf25774fd1
fff96c3997d0f0cdb9cdf68a7dde6dba559bc4ff23d8735cf3e6204aad51babb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FFF96C3997D0F0CDB9CDF68A7DDE6DBA559BC4FF23D8735CF3E6204AAD51BABB"
Last-Modified: Tue, 22 Nov 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5696
Expires: Thu, 24 Nov 2022 13:59:24 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 768ddfc89e55162c8a7c275052dca34a
3ad0cf7f064b8115f3b6393d273a57d28786d62e
6c87dd00d78240a3df82cf035254ebe71d12945873118d50e2a61bd7a96daa6b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6C87DD00D78240A3DF82CF035254EBE71D12945873118D50E2A61BD7A96DAA6B"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17899
Expires: Thu, 24 Nov 2022 17:22:47 GMT
Date: Thu, 24 Nov 2022 12:24:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 768ddfc89e55162c8a7c275052dca34a
3ad0cf7f064b8115f3b6393d273a57d28786d62e
6c87dd00d78240a3df82cf035254ebe71d12945873118d50e2a61bd7a96daa6b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6C87DD00D78240A3DF82CF035254EBE71D12945873118D50E2A61BD7A96DAA6B"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17898
Expires: Thu, 24 Nov 2022 17:22:47 GMT
Date: Thu, 24 Nov 2022 12:24:29 GMT
Connection: keep-alive
i.yapx.cc/U5T4F.jpg
172.67.147.15403 Forbidden 1.6 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash 8108eb1242e08c310fbd2aac6285b594
3c440418c000d807fb7a880f1c374e70190f442e
2fc7081fb55d8192f6e0078177e645af7f659c57262eca3a1037b7fd617d2fa6
GET /U5T4F.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xMyJbnfulDLEJqedUJrzSX5yLCs7gdTVETVxhGofSDmlQhbyumtEN3bHXzT75UR%2FaTD7V0X0WdV1XF8r3kOE2AJy5PjfROtj0HIATgv9Sr78fVsPq0nPtxKmy2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d6a6d0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/48543872/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&hittoken=1669292667_489a3e9956e3ef1b3554548f2f82382e08fc92996c2aeb5a828c9a1c106b2075&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292668%3Ac%3A1%3Arn%3A820968032%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C3306%2C3306%2C33%2C%3Ans%3A1669292664688%3Arqnl%3A1%3Ast%3A1669292668&t=gdpr(14)mc(p-1)clc(0-0-0)rqnt(2)aw(1)rqnl(1)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/48543872/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&hittoken=1669292667_489a3e9956e3ef1b3554548f2f82382e08fc92996c2aeb5a828c9a1c106b2075&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292668%3Ac%3A1%3Arn%3A820968032%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C3306%2C3306%2C33%2C%3Ans%3A1669292664688%3Arqnl%3A1%3Ast%3A1669292668&t=gdpr(14)mc(p-1)clc(0-0-0)rqnt(2)aw(1)rqnl(1)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/48543872/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&hittoken=1669292667_489a3e9956e3ef1b3554548f2f82382e08fc92996c2aeb5a828c9a1c106b2075&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292668%3Ac%3A1%3Arn%3A820968032%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C3306%2C3306%2C33%2C%3Ans%3A1669292664688%3Arqnl%3A1%3Ast%3A1669292668&t=gdpr(14)mc(p-1)clc(0-0-0)rqnt(2)aw(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 24 Nov 2022 12:24:29 GMT
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:29 GMT
last-modified: Thu, 24-Nov-2022 12:24:29 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 1350ca7a1f554553553b594acf093fe9
728d52003f39fa33327f5646ca91819b5b91f8e2
e20b9881e2ba882fef5dee22d5d6da2f256f612969e98749719dd378c2db71d3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:29 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:51:09 GMT
ETag: "728d52003f39fa33327f5646ca91819b5b91f8e2"
Last-Modified: Thu, 24 Nov 2022 10:51:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2433
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2e684d0afa-OSL
yandex.ru/an/rtbcount/1Ojm5QUc0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97sL4IHrbv51Xe7XB-Ci9WQ6kKmWaQLC2u3aMgO8eCXPflz0y8f9873dJK6Uiq25glKrPkzO6VuoiO2SmCmA97kP5O7aL6QGvhdCR21hcPaO542sicnarX3wzcD_RrFrIURgQQU-9LG4rbm5gxmB9dyoEpZnGnpDyaxA2inQmJB1VWCBumuMrWCiZ1TOzjoQk_Z9h8LJnM-oGBpomVuXo_wl2dolz6_OlsK1UMW1A-z9rZrSN63f2wmD3KqiDrchmrY_1MzaI_ZA2l931ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLnD7A8Bt29Bt08DNy9HlCmfzmraHsFUEL4vzOlxEVnSvcPc5gO6ooWPrf1plF2NRn1-pTByzzVBFtv--e7-my0B-Qape0
77.88.55.70200 OK 988 B URL HTTP/2 yandex.ru/an/rtbcount/1Ojm5QUc0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97sL4IHrbv51Xe7XB-Ci9WQ6kKmWaQLC2u3aMgO8eCXPflz0y8f9873dJK6Uiq25glKrPkzO6VuoiO2SmCmA97kP5O7aL6QGvhdCR21hcPaO542sicnarX3wzcD_RrFrIURgQQU-9LG4rbm5gxmB9dyoEpZnGnpDyaxA2inQmJB1VWCBumuMrWCiZ1TOzjoQk_Z9h8LJnM-oGBpomVuXo_wl2dolz6_OlsK1UMW1A-z9rZrSN63f2wmD3KqiDrchmrY_1MzaI_ZA2l931ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLnD7A8Bt29Bt08DNy9HlCmfzmraHsFUEL4vzOlxEVnSvcPc5gO6ooWPrf1plF2NRn1-pTByzzVBFtv--e7-my0B-Qape0
IP 77.88.55.70:0
Hash aa0ec8a3fc7fa7942f55e99400ef262b
0d4e001f766a5387e929804773f5aeb4d9ab4629
88f9b6a6227442eb1bf2c3bd39c988b5a0e9ca933b0e5108cb1d575e6ed332b1
GET /an/rtbcount/1Ojm5QUc0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97sL4IHrbv51Xe7XB-Ci9WQ6kKmWaQLC2u3aMgO8eCXPflz0y8f9873dJK6Uiq25glKrPkzO6VuoiO2SmCmA97kP5O7aL6QGvhdCR21hcPaO542sicnarX3wzcD_RrFrIURgQQU-9LG4rbm5gxmB9dyoEpZnGnpDyaxA2inQmJB1VWCBumuMrWCiZ1TOzjoQk_Z9h8LJnM-oGBpomVuXo_wl2dolz6_OlsK1UMW1A-z9rZrSN63f2wmD3KqiDrchmrY_1MzaI_ZA2l931ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLnD7A8Bt29Bt08DNy9HlCmfzmraHsFUEL4vzOlxEVnSvcPc5gO6ooWPrf1plF2NRn1-pTByzzVBFtv--e7-my0B-Qape0 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 24 Nov 2022 12:24:29 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://synthira.ru
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:29 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:29 GMT; SameSite=None; Secure
i=/rDuN3plzUToridpU9+mAWUw1uonp+wxAFVKk+IRaYTDyNzVB+WQeRfFOyP2ead1c1H9XUpkxkHpgJGXg9U2BzHumPs=; Expires=Sat, 23-Nov-2024 12:24:29 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
pragma: no-cache
expires: Thu, 24 Nov 2022 12:24:29 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
x-xss-protection: 1; mode=block
last-modified: Thu, 24 Nov 2022 12:24:29 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: image/gif
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 1350ca7a1f554553553b594acf093fe9
728d52003f39fa33327f5646ca91819b5b91f8e2
e20b9881e2ba882fef5dee22d5d6da2f256f612969e98749719dd378c2db71d3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:29 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:51:09 GMT
ETag: "728d52003f39fa33327f5646ca91819b5b91f8e2"
Last-Modified: Thu, 24 Nov 2022 10:51:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2433
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2e78bab4ed-OSL
i.yapx.cc/U5T4I.jpg
172.67.147.15403 Forbidden 2.4 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash 3453c1ff97aa770e3330a1a1a49f0ddc
9c43789d4e86fe6a301e198a285964c64fae1831
32abcd7130399c8eb56bb7605cfd52d33877b077082a4477b651ea9adbcdcd3b
GET /U5T4I.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WOht%2FuXAiU4vSx89ZttyABxjcijwl9HIxHVd6f5wZdxjCk%2Fn1mx7i4GBvA28hk5IgHey3pDSJU5nNa1lFS2DWvi2QyrDBRWnx34GrsXNXx98MVy41ndFwbvUwcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 1350ca7a1f554553553b594acf093fe9
728d52003f39fa33327f5646ca91819b5b91f8e2
e20b9881e2ba882fef5dee22d5d6da2f256f612969e98749719dd378c2db71d3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:29 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:51:09 GMT
ETag: "728d52003f39fa33327f5646ca91819b5b91f8e2"
Last-Modified: Thu, 24 Nov 2022 10:51:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2433
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2e886d0afa-OSL
i.yapx.cc/U5T4B.jpg
172.67.147.15403 Forbidden 1.9 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash 3e3e41db9ea2b6c2a62ceb0f0deb9f9f
2ad3425fa0041888a32d844841b0ed0b454ba151
56824ba384d7a49913bcc3bb6efdba5b2a9a07367e866a032d7976de80290085
GET /U5T4B.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i8moJBlgYIEDjwBxQMOyoGJbRGwhtpNCQIo7zAOgTlGjRj3pPn5CXtOSfgiplprAOI4fJB%2FenAWI2xmKCtB0otmoQPVCU0%2BbROO6QIunIaxJP74vmgvKPkI2XiU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d4a2f0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 1320b2a2db6fb83f596b570894329665
ce03ba8567bc504b0dd518a601b3bf78c4d634ce
6d3ea0f8ba2ef8a8611f88c3daff5f335eefa1f546f9081d755aab4db25d81b8
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 12:24:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 28 Nov 2022 10:02:36 GMT
ETag: "ce03ba8567bc504b0dd518a601b3bf78c4d634ce"
Last-Modified: Thu, 24 Nov 2022 10:02:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1465
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f21f2ef8cf0afa-OSL
ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
87.250.250.114200 Ok 95 B URL HTTP/1.1 ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
IP 87.250.250.114:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 60cf42b4d05caf10cf8bb15c0817a7b4
bd269860bb508aebcb6f08fe7289d5f117830383
18c327afa903633f86c3efcf12b77f098077eacaa8be101bb007846fd74f8b93
GET /static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes HTTP/1.1
Host: ysa-static.passport.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Server: nginx/1.14.2
Date: Thu, 24 Nov 2022 12:24:29 GMT
Content-Type: image/png
Content-Length: 95
Connection: close
Cache-Control: private
Expires: Fri, 25 Nov 2022 12:24:29 GMT
X-RT-IQ: 0.0001
X-RT-IH: 0.0002
Strict-Transport-Security: max-age=315360000; includeSubDomains
mc.yandex.ru/watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A57675481%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C3306%2C3306%2C33%2C2046%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1669292669&t=gdpr(14)mc(p-2-h-1)clc(0-0-0)rqnt(1)aw(1)ecs(1)rqnl(1)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A57675481%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C3306%2C3306%2C33%2C2046%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1669292669&t=gdpr(14)mc(p-2-h-1)clc(0-0-0)rqnt(1)aw(1)ecs(1)rqnl(1)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A57675481%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C3306%2C3306%2C33%2C2046%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1669292669&t=gdpr(14)mc(p-2-h-1)clc(0-0-0)rqnt(1)aw(1)ecs(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 24 Nov 2022 12:24:29 GMT
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:29 GMT
last-modified: Thu, 24-Nov-2022 12:24:29 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
i.yapx.cc/U5T3v.jpg
172.67.147.15403 Forbidden 1.5 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash dcf8fa0b7f6c3827b655bee02444bfdf
77017669660b9a28403f79632cbbb88452de0ec9
75760fd67c403318e0b9a6103f30faf0af94abd021b95d153e793792afde8a10
GET /U5T3v.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mk0ud9gJC4xFKllpptfDllH%2FXSY%2BO1iwiCG6BP13mS9ZkrEbPdnG4%2BYuj1uWjcbhKQvW7%2Fmytq9%2B8ZSx1%2FLwIwVvlV7FqKzE7ChSTZe0sRlhTkeQ5HO2uX7oGOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d6a6b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A47699632%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292669%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29mc%28p-2-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29ecs%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A47699632%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292669%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29mc%28p-2-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29ecs%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/436754/1?page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&cnt-class=1&hittoken=1669292669_40f7cd44930eb7f5a4519404731bf7d243f3c91d71a5adf66fcebd0b428a174b&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A1278579840457%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122428%3Aet%3A1669292669%3Ac%3A1%3Arn%3A47699632%3Arqn%3A2%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aeu%3A1%3Ans%3A1669292664688%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292669%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29mc%28p-2-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29ecs%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 24 Nov 2022 12:24:29 GMT
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:29 GMT
last-modified: Thu, 24-Nov-2022 12:24:29 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ext-strm-itt07.strm.yandex.net/vh-canvas-converted/vod-content/3412917646538420012/b689715-bb89d7dc-d57f7451-9a083454/webm/VP8_256_144_300.webm?vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&noredir=1&lid=1529
185.70.202.9206 Partial Content 410 kB URL HTTP/2 ext-strm-itt07.strm.yandex.net/vh-canvas-converted/vod-content/3412917646538420012/b689715-bb89d7dc-d57f7451-9a083454/webm/VP8_256_144_300.webm?vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&noredir=1&lid=1529
IP 185.70.202.9:0
ASN #6762 TELECOM ITALIA SPARKLE S.p.A.
File type WebM\012- EBML file, creator webmB\20\012- data
Size 410 kB (410382 bytes)
Hash 035c4393aa36dfc972fcaef402c57652
2af15cb2edb347724196826b093a5adc3bc756c5
fbaf4e069d8935fe204cd112088dda7e9464305967d16cb97063d525b7d875d2
GET /vh-canvas-converted/vod-content/3412917646538420012/b689715-bb89d7dc-d57f7451-9a083454/webm/VP8_256_144_300.webm?vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&noredir=1&lid=1529 HTTP/1.1
Host: ext-strm-itt07.strm.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx/1.18.0
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: video/webm
content-length: 410382
etag: "035c4393aa36dfc972fcaef402c57652"
last-modified: Sun, 06 Feb 2022 10:28:15 GMT
x-amz-version-id: null
x-robots-tag: noindex, noarchive, nofollow
x-strm-log-split: 5
x_h: strm-ams07.strm.yandex.net
x-strm-request-id: dc425df3e3243170
x-request-id: dc425df3e3243170
expires: Thu, 24 Nov 2022 12:29:29 GMT
cache-control: max-age=300
report-to: {"group": "network-errors", "max_age": 1200, "include_subdomains": true, "endpoints": [ {"url": "https://dr.yandex.net/strm", "priority": 1}, {"url": "https://dr2.yandex.net/strm", "priority": 2} ]}
nel: {"report_to": "network-errors", "max_age": 1200, "success_fraction": 0.005, "failure_fraction": 0.05, "include_subdomains": true}
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range, X-Client-Timestamp, X-Strm-Session
access-control-expose-headers: Date, X-Strm-Session, X-Estimated-RTT, X-Estimated-Bandwidth, X-Connection-ID, Age, X-Server-Time-Ms, X-Plg-URL
x-estimated-rtt: 34884
x-estimated-bandwidth: 1253240
x-connection-id: 541302641
x-server-time-ms: 1669292669472
content-range: bytes 0-410381/410382
X-Firefox-Spdy: h2
i.yapx.cc/U5TCD.jpg
172.67.147.15403 Forbidden 2.9 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash 4b1c02284458d1062a2cfc7e4d33c636
2523c7af9d20a9d89253638144208673580e982b
994025cf0fe35e89e304566a5647db6a8bc27661a23dd1d415b072e0792f2442
GET /U5TCD.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9n5%2BDDGK1cRsKzZ2foQUfs1yWPVfuE7STT1PjAs7s1VVQJuZQa54QBJ9tpvkhzZj3Vc1gst0so3u2TyRlXu5ow94A4hI%2BEOdezSD4xdqsRoJfFMs3waBWLG5ApA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1f0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
log.strm.yandex.ru/log?VAS=683987&event=PrioritiseMediaFiles
87.250.251.15200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=683987&event=PrioritiseMediaFiles
IP 87.250.251.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=683987&event=PrioritiseMediaFiles HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 13677
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Thu, 24 Nov 2022 12:24:29 GMT
timing-allow-origin: https://synthira.ru
access-control-allow-origin: https://synthira.ru
x-request-id: 1669292669793231-5814478842274489350
X-Firefox-Spdy: h2
i.yapx.cc/U5TF0.jpg
172.67.147.15403 Forbidden 59 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash 2211c53bd01324841060f6e8a05d7ed4
3428972c0cff89b4631e6e77b1c0a481b47dc3eb
af9f5ef66d43fad9fb8205cae431b6b7acbad301bc36b98932ade17ebe51e33e
GET /U5TF0.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2PGqlZLyiTlImN8jeURrglSxqwDb%2FTCnWaZJP72t6JojmoMCM%2Bw8%2Fp%2FDzqbjdpBRJVgHl4oewYmuRwM3vINoTkbOUb1sVKFXmUfjpljrCL5XvseyBd8ThmJ%2BiQc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a200b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55bc30743496fc60ba35a242c2d2f0a8
5119b5b017f39b3379556534f2ca4e3cedd4fa3b
0addb4cc5a85506efa7c0f820e1ebcb1383bf4d4cd53f895df54a402b196959c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55bc30743496fc60ba35a242c2d2f0a8
5119b5b017f39b3379556534f2ca4e3cedd4fa3b
0addb4cc5a85506efa7c0f820e1ebcb1383bf4d4cd53f895df54a402b196959c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yastatic.net/q/set/s/rsya-tag-users/bundle.js
178.154.131.215200 OK 37 kB URL HTTP/2 yastatic.net/q/set/s/rsya-tag-users/bundle.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bedb6dc5a6ea1ca4857a439617fb71e7
a1d583d4e720a94c1379a0db99f2658c55816262
e11634356a9e8904d78c2404316ad161e968c45b7ff8fdca95b78e393e1b17f7
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 24 Nov 2022 12:24:30 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"82bdc8db563d3e71c35534315f8a9fd5"
expires: Sun, 27 Nov 2022 00:21:09 GMT
last-modified: Fri, 29 Oct 2021 11:19:01 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: b596161a7394e7e3
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55bc30743496fc60ba35a242c2d2f0a8
5119b5b017f39b3379556534f2ca4e3cedd4fa3b
0addb4cc5a85506efa7c0f820e1ebcb1383bf4d4cd53f895df54a402b196959c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion_async.js
142.250.74.34200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (1654)
Hash f2258b08ae7f4c53a27c27e21536ef06
65fe239266dc4c3f8f8e25dfd039a77733f75f67
fd9775067ede051cfe4861265da0e9374a20cd833fedcd3c9708af0b525f8921
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 24 Nov 2022 12:24:30 GMT
expires: Thu, 24 Nov 2022 12:24:30 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16595884479219046262
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
142.250.74.34302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y-muKI7e6gSxurb4Cg&random=1656142058&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.yapx.cc/U5TFu.jpg
172.67.147.15403 Forbidden 1.6 kB IP 172.67.147.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (531)
Hash d27f3f1ebff5a88ededab947ce21961b
88225ed3bb3b78c1ac4c6d9787f0f59d536184f1
5f5555778c9cae178ef45063996141fad60009af6ab2793c66487484859be3c7
GET /U5TFu.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EtJsyzN52DSi4rXzCzH5DSA%2FrgN%2BnI69D%2Fg8AOGmZAnkUTXu9VkVyibU7llTCmiU6jO5ql9Oxouy4CiL1fING6G0zGCxEYDLvYKN6ziQhqPHqWx3iTskyL0PobU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1e0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05681a05de8df6e408ae41032401b73f
f4824b4863e26866b10cd45a8cb422c339997035
97ab2238b53d233622081c75f7c60621eea9ae85c19c7ae958cfdbd685f39ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
87.250.250.119200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61806c66e341947bed9e7bc0e3f3ae78
c9405283246c9ad5893a10c4b363e2854ba03bfd
626a51f5dfeaa9d28875c338957204cc00db3fb2ac205c60e04175a974f105bc
GET /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Thu, 24 Nov 2022 12:24:30 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:30 GMT
last-modified: Thu, 24-Nov-2022 12:24:30 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
an.yandex.ru/event_confirmation
77.88.21.90200 OK 1.4 kB URL HTTP/2 an.yandex.ru/event_confirmation
IP 77.88.21.90:0
Hash d56a8c053028a2d49decbe902b0677d1
ecfc1f87a35888d113048712627ee6f4b0acc441
5a754b512f911a92f1a0c8fda096b76dbf0fdc80dfba1cc6b99b93d1800bc110
OPTIONS /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://synthira.ru/
Origin: https://synthira.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
date: Thu, 24 Nov 2022 12:24:29 GMT
access-control-max-age: 1728000
access-control-allow-headers: content-type
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y7y4KMiR78EPjv-UgAY&random=560317809&sscte=1&crd=
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y7y4KMiR78EPjv-UgAY&random=560317809&sscte=1&crd=
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y7y4KMiR78EPjv-UgAY&random=560317809&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=560317809&crd=&is_vtc=1&random=2207289106
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 12:39:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1669292670479&cv=9&fst=1669292670479&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.66200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1669292670479&cv=9&fst=1669292670479&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2577), with no line terminators
Hash 8a1c5b1d69a13c03a89dbf80dad81b5c
9c0f6e2af1b1ea1a76c89fe7f77b168bf4e7d2a3
d5b1226c3a943158c365472f906976c25e8cb9a704c132c448b0e198d71008a1
GET /pagead/viewthroughconversion/947884341/?random=1669292670479&cv=9&fst=1669292670479&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1043
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 12:39:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1669292670470&cv=9&fst=1669292670470&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.66200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1669292670470&cv=9&fst=1669292670470&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2577), with no line terminators
Hash 02bbf9d1e4fc72ad85ad3af0cff565e9
9aa15ec3f202b83475eea8d000f39e393b32c7db
e158dabc59f6c7d605be60ffe52d3e48fd0de208c501eb925c6b52dd5e3dad6e
GET /pagead/viewthroughconversion/947884341/?random=1669292670470&cv=9&fst=1669292670470&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1047
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 12:39:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1669292670482&cv=9&fst=1669292670482&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.66200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1669292670482&cv=9&fst=1669292670482&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2577), with no line terminators
Hash bb05d1a3574a5b19570bef5aac378fe0
d0a36f2b8c3a0c08d6448dde4037387124ace47f
d6f8ea58142cca56b5a180c859f76de57e23350fc209a48303af6c2139d2b1a7
GET /pagead/viewthroughconversion/693627671/?random=1669292670482&cv=9&fst=1669292670482&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1047
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 12:39:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y-muKI7e6gSxurb4Cg&random=1656142058&sscte=1&crd=
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y-muKI7e6gSxurb4Cg&random=1656142058&sscte=1&crd=
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=fmJ_Y-muKI7e6gSxurb4Cg&random=1656142058&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1656142058&crd=&is_vtc=1&random=977848054
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 12:39:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/693627671/?random=1669292670473&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2666570520&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1669292670473&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2666570520&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1669292670473&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2666570520&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1656142058&crd=&is_vtc=1&random=977848054&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1656142058&crd=&is_vtc=1&random=977848054&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1656142058&crd=&is_vtc=1&random=977848054&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1669292670482&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=1925462626&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1669292670482&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=1925462626&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1669292670482&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=1925462626&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1669292670479&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2182537681&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1669292670479&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2182537681&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1669292670479&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2182537681&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1669292670470&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2327133076&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1669292670470&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2327133076&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1669292670470&cv=9&fst=1669291200000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fsynthira.ru%2F&async=1&fmt=3&is_vtc=1&random=2327133076&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=560317809&crd=&is_vtc=1&random=2207289106&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=560317809&crd=&is_vtc=1&random=2207289106&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=560317809&crd=&is_vtc=1&random=2207289106&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 12:24:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 12:24:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
log.strm.yandex.ru/log?VAS=683987&event=VastTracking_impression
87.250.251.15200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=683987&event=VastTracking_impression
IP 87.250.251.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=683987&event=VastTracking_impression HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 6273
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Thu, 24 Nov 2022 12:24:32 GMT
timing-allow-origin: https://synthira.ru
access-control-allow-origin: https://synthira.ru
x-request-id: 1669292672285458-12190711842471313387
X-Firefox-Spdy: h2
i.yapx.cc/U5T37.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5T37.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iumit56nRhrGDAd4QBDgi4Fu4EVx3w5rE793U1PPHJJIb5ogIW7eThK8%2BY2MA57uiCgiGyMOtEtmYZrU2YfJCEI0i7Hbf%2FbXKsLzpa3dx%2BqfxDqHwHkjxKb2V7w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1c0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yandex.ru/an/rtbcount/1QXWgmAb0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97WLJDvbP91XOFZBE8k9WM4k4qXaATC28BcMAG8eSfRfFn2yOX88t7bJaESiKA5gVOtPErQ6lqmi82SmimB9NcP583cL6QHvBZCRo5fc9WO5aAqi6varXBxzsD_RL7sIkNhQgMy95O4rLy4gxuB9dymEJlmGHxEyax82irQmJB3VmCAuWuNr00lZ1POzj-OkVZ9huLJncomGhtomVyYo_wi2tolz6_PlMK0UMi3AUv9r3nSNMFe2QqD34yjDrkemrc_16zaIlhA2_D31ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLnj398hp19Bp18DN_91hFm9vmraLtFUEN49zRlx6UnivbPc1eOcsnWPzh1pdE2NVm1U_VBSn_VxFtvE-e7Emy0lDAJE000?confirmTime=2101000&confirmRatio=1000000&test-tag=550855325515778&format-type=118&actual-format=14&rnd=3141102815271&pcode-active-testids=685676%2C0%2C27&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&width=266&height=300
77.88.55.70200 OK 0 B URL HTTP/2 yandex.ru/an/rtbcount/1QXWgmAb0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97WLJDvbP91XOFZBE8k9WM4k4qXaATC28BcMAG8eSfRfFn2yOX88t7bJaESiKA5gVOtPErQ6lqmi82SmimB9NcP583cL6QHvBZCRo5fc9WO5aAqi6varXBxzsD_RL7sIkNhQgMy95O4rLy4gxuB9dymEJlmGHxEyax82irQmJB3VmCAuWuNr00lZ1POzj-OkVZ9huLJncomGhtomVyYo_wi2tolz6_PlMK0UMi3AUv9r3nSNMFe2QqD34yjDrkemrc_16zaIlhA2_D31ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLnj398hp19Bp18DN_91hFm9vmraLtFUEN49zRlx6UnivbPc1eOcsnWPzh1pdE2NVm1U_VBSn_VxFtvE-e7Emy0lDAJE000?confirmTime=2101000&confirmRatio=1000000&test-tag=550855325515778&format-type=118&actual-format=14&rnd=3141102815271&pcode-active-testids=685676%2C0%2C27&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&width=266&height=300
IP 77.88.55.70:0
GET /an/rtbcount/1QXWgmAb0UO100000000U9nJh9RBNRBbjxEV8S_PC-lKp7ucM5OdrISp084dJ2GqFVYIQApGAZQ6L4QWU2RFsITpGEAbp41URJcGQ6K4aPqWMI1WOfZ9E44Umbx8cCOCOQraz8JAxsMSTLISuIYOVvOH97WLJDvbP91XOFZBE8k9WM4k4qXaATC28BcMAG8eSfRfFn2yOX88t7bJaESiKA5gVOtPErQ6lqmi82SmimB9NcP583cL6QHvBZCRo5fc9WO5aAqi6varXBxzsD_RL7sIkNhQgMy95O4rLy4gxuB9dymEJlmGHxEyax82irQmJB3VmCAuWuNr00lZ1POzj-OkVZ9huLJncomGhtomVyYo_wi2tolz6_PlMK0UMi3AUv9r3nSNMFe2QqD34yjDrkemrc_16zaIlhA2_D31ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLnj398hp19Bp18DN_91hFm9vmraLtFUEN49zRlx6UnivbPc1eOcsnWPzh1pdE2NVm1U_VBSn_VxFtvE-e7Emy0lDAJE000?confirmTime=2101000&confirmRatio=1000000&test-tag=550855325515778&format-type=118&actual-format=14&rnd=3141102815271&pcode-active-testids=685676%2C0%2C27&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&width=266&height=300 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 24 Nov 2022 12:24:31 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://synthira.ru
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:31 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:31 GMT; SameSite=None; Secure
i=HX69z34uNcwwCkQIBjhrqH2RMUrzzGW5KMyyXHs8qrg2X/Y4+o2srp3NZUWLJJPaqyoIcsSJoxcaDxfjWlNHr8mE08M=; Expires=Sat, 23-Nov-2024 12:24:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
pragma: no-cache
expires: Thu, 24 Nov 2022 12:24:31 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
x-xss-protection: 1; mode=block
last-modified: Thu, 24 Nov 2022 12:24:31 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: image/gif
X-Firefox-Spdy: h2
i.yapx.cc/U5T30.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5T30.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qaNYVmO9QsXnnMPGzO4q2r9oX3JlVdoxVkKvZR1KiIILLGNKblWXVnYEhpyOOs13dX3dBL1S82X6EGCdkuepnA2QgwN6o9vzN1t1kLnBRpl43jledm9yzGgD%2FbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d7a850b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto+Condensed
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed
IP 142.250.74.10:0
GET /css?family=Roboto+Condensed HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 12:24:26 GMT
date: Thu, 24 Nov 2022 12:24:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/watch/48543872?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/48543872?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
GET /watch/48543872?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20(08.03.2021)%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/48543872/1?wmode=7&page-url=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1620%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1000800435083%3Ahid%3A69419964%3Az%3A0%3Ai%3A20221124122427%3Aet%3A1669292667%3Ac%3A1%3Arn%3A329213637%3Arqn%3A1%3Au%3A1669292667699686716%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C304%2C96%2C37%2C395%2C0%2C%2C1046%2C129%2C%2C%2C%2C2046%3Ans%3A1669292664688%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669292667%3At%3A%D0%A7%D0%B8%D1%82%20%D0%BD%D0%B0%20Among%20Us%20%E2%80%93%20Hackermode%20v30.37%20%D0%B4%D0%BB%D1%8F%20%D0%9F%D0%9A%20%2808.03.2021%29%20%D0%B4%D0%BB%D1%8F%20Among%20Us%2030.37%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20Among%20Us%20-%20%D0%9C%D0%BE%D0%B4%D1%8B%20%D0%B4%D0%BB%D1%8F%20%D0%B8%D0%B3%D1%80&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 24 Nov 2022 12:24:27 GMT
access-control-allow-origin: https://synthira.ru
set-cookie: yandexuid=9651266601669292667; Expires=Fri, 24-Nov-2023 12:24:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9651266601669292667; Expires=Fri, 24-Nov-2023 12:24:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1442316361669292667; Path=/; SameSite=None; Secure
i=SMRI6Kbk+6X4gHylqcwWkoLtyYJ+apItYVxfInJOwxaPv2dRO1HtXRWasY7f+YuajMaKuUfm5bBkBt7hTJH8PRjEkVI=; Expires=Sun, 21-Nov-2032 12:24:20 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700828667.yc.1669292667#1700828667.yrts.1669292667#1700828667.yrtsi.1669292667; Expires=Fri, 24-Nov-2023 12:24:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:27 GMT
last-modified: Thu, 24-Nov-2022 12:24:27 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc(0-0-0)rqnt(1)aw(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc(0-0-0)rqnt(1)aw(1)ti(2)
IP 87.250.250.119:0
GET /watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc(0-0-0)rqnt(1)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fsynthira.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1432309964329%3Ahid%3A107536300%3Az%3A0%3Ai%3A20221124122430%3Aet%3A1669292670%3Arn%3A1051327358%3Arqn%3A1%3Au%3A1669292670733927065%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C18%2C0%2C3%2C0%2C%2C146%2C0%2C515%2C515%2C1%2C176%3Ans%3A1669292668490%3Ast%3A1669292670&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
date: Thu, 24 Nov 2022 12:24:30 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yandexuid=2687084861669292670; Expires=Fri, 24-Nov-2023 12:24:30 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2687084861669292670; Expires=Fri, 24-Nov-2023 12:24:30 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1370236911669292670; Path=/; SameSite=None; Secure
i=gwxlvVktDO53IerjUVBBvje0nl5UKFWm8EYcPs+SLz3DzSNVrd1m/hHz78oWzqo6e8G21WMtEbiP0+gNwj/EuUcLnZA=; Expires=Sun, 21-Nov-2032 12:24:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700828670.yc.1669292670#1700828670.yrts.1669292670#1700828670.yrtsi.1669292670; Expires=Fri, 24-Nov-2023 12:24:30 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 24-Nov-2022 12:24:30 GMT
last-modified: Thu, 24-Nov-2022 12:24:30 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yandex.ru/an/tracking/WUqejI_zO2u17Gy0j1e00000j1wtv0K0BW8nUs9_Om00000ufAWrOBm8Q0I00G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0Q02Zlg50S022w1zw0I91VW4iw4CY0NLo06G1REX3A05vju3g0M0ZmEm1O2F0xW5W8y3m0MvmAi2o0N7aapW1PG1e0Rk0QW6xW791diURQIq-qDEgGSCpUIS9ZRvOBW7W0NG1nOAq0YwY821meA01kW91prPGBfgLvq_Y0i6gWiGKRdP4GpD003z9NzyDku50860W8281AWFZ9gpzkh4pVnWW135pxWXcX0R2G002FW_6SWGmB2GWe0KW8221AWKiw4C0j0K_yI1KDWKWv7BcGRW507O5h3XqUYjtvk7QO4Ny3-O5vUrj2pG5z260zWNaf4wq1WX-1Z1YlRieu-y_6E06RWQ0u8S3MKqGJemPtWqPt0mPJVf780TVz0UeEBQzQdubu1Vs1xwsXwW7yNFk26m7m787yMHa57I7mOsE3KmCpJW80RG8V___m7L8l__V_-18m0000000F0_402-Eih3I9i4SkKgn36C72TgCUvblbxb65YJU3KnBD2hZb64weQAycYI2rACwCPCBYPpHGQZ~1?action-id=14&adsdk-bundle-version=683987&adsdk-bundle-name=AdLoader&adsdk-container-visibility=100&adsdk-container-width=202&adsdk-container-height=132&video-avatar-width=202&video-avatar-height=114&ad-session-id=8899831669292667432&vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&client-ts=1669292671373&client-timezone-offset=0&viewability-undetermined=0&video-volume=100&video-muted=1&pcode-active-testids=685676%2C0%2C27&document-has-focus=true&is-fullscreen=false&ad-pod-id=unknown&product-theme=unknown
77.88.55.70200 OK 0 B URL HTTP/2 yandex.ru/an/tracking/WUqejI_zO2u17Gy0j1e00000j1wtv0K0BW8nUs9_Om00000ufAWrOBm8Q0I00G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0Q02Zlg50S022w1zw0I91VW4iw4CY0NLo06G1REX3A05vju3g0M0ZmEm1O2F0xW5W8y3m0MvmAi2o0N7aapW1PG1e0Rk0QW6xW791diURQIq-qDEgGSCpUIS9ZRvOBW7W0NG1nOAq0YwY821meA01kW91prPGBfgLvq_Y0i6gWiGKRdP4GpD003z9NzyDku50860W8281AWFZ9gpzkh4pVnWW135pxWXcX0R2G002FW_6SWGmB2GWe0KW8221AWKiw4C0j0K_yI1KDWKWv7BcGRW507O5h3XqUYjtvk7QO4Ny3-O5vUrj2pG5z260zWNaf4wq1WX-1Z1YlRieu-y_6E06RWQ0u8S3MKqGJemPtWqPt0mPJVf780TVz0UeEBQzQdubu1Vs1xwsXwW7yNFk26m7m787yMHa57I7mOsE3KmCpJW80RG8V___m7L8l__V_-18m0000000F0_402-Eih3I9i4SkKgn36C72TgCUvblbxb65YJU3KnBD2hZb64weQAycYI2rACwCPCBYPpHGQZ~1?action-id=14&adsdk-bundle-version=683987&adsdk-bundle-name=AdLoader&adsdk-container-visibility=100&adsdk-container-width=202&adsdk-container-height=132&video-avatar-width=202&video-avatar-height=114&ad-session-id=8899831669292667432&vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&client-ts=1669292671373&client-timezone-offset=0&viewability-undetermined=0&video-volume=100&video-muted=1&pcode-active-testids=685676%2C0%2C27&document-has-focus=true&is-fullscreen=false&ad-pod-id=unknown&product-theme=unknown
IP 77.88.55.70:0
POST /an/tracking/WUqejI_zO2u17Gy0j1e00000j1wtv0K0BW8nUs9_Om00000ufAWrOBm8Q0I00G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0Q02Zlg50S022w1zw0I91VW4iw4CY0NLo06G1REX3A05vju3g0M0ZmEm1O2F0xW5W8y3m0MvmAi2o0N7aapW1PG1e0Rk0QW6xW791diURQIq-qDEgGSCpUIS9ZRvOBW7W0NG1nOAq0YwY821meA01kW91prPGBfgLvq_Y0i6gWiGKRdP4GpD003z9NzyDku50860W8281AWFZ9gpzkh4pVnWW135pxWXcX0R2G002FW_6SWGmB2GWe0KW8221AWKiw4C0j0K_yI1KDWKWv7BcGRW507O5h3XqUYjtvk7QO4Ny3-O5vUrj2pG5z260zWNaf4wq1WX-1Z1YlRieu-y_6E06RWQ0u8S3MKqGJemPtWqPt0mPJVf780TVz0UeEBQzQdubu1Vs1xwsXwW7yNFk26m7m787yMHa57I7mOsE3KmCpJW80RG8V___m7L8l__V_-18m0000000F0_402-Eih3I9i4SkKgn36C72TgCUvblbxb65YJU3KnBD2hZb64weQAycYI2rACwCPCBYPpHGQZ~1?action-id=14&adsdk-bundle-version=683987&adsdk-bundle-name=AdLoader&adsdk-container-visibility=100&adsdk-container-width=202&adsdk-container-height=132&video-avatar-width=202&video-avatar-height=114&ad-session-id=8899831669292667432&vsid=b55b2ade049a7d1169ffe2aa43c99fd5580c912a3899xVASx5034x1669292667&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&client-ts=1669292671373&client-timezone-offset=0&viewability-undetermined=0&video-volume=100&video-muted=1&pcode-active-testids=685676%2C0%2C27&document-has-focus=true&is-fullscreen=false&ad-pod-id=unknown&product-theme=unknown HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 24 Nov 2022 12:24:32 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://synthira.ru
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:32 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:32 GMT; SameSite=None; Secure
i=WrwHJ/ZekxiD6lbkRuadPcKk2chOfuv3yvXnCxy6/8FMX/b0ydt3TOF3RpoWBcQ749WBfUfg1JAc2vd02Caajdgc+xA=; Expires=Sat, 23-Nov-2024 12:24:32 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
pragma: no-cache
expires: Thu, 24 Nov 2022 12:24:32 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
x-xss-protection: 1; mode=block
last-modified: Thu, 24 Nov 2022 12:24:32 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
X-Firefox-Spdy: h2
yandex.ru/ads/system/context.js
77.88.55.70200 OK 0 B URL HTTP/2 yandex.ru/ads/system/context.js
IP 77.88.55.70:0
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=7KZZhIVOom91aA5CFzcTeYUWFF5gT/rhnq1WYxFaorG8L9YQppbE828Z2TrgvZ+P0uH1p7dQtKvYxdGADNIghfhs2O4=; Expires=Sat, 23-Nov-2024 12:24:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
expires: Thu, 24 Nov 2022 13:24:27 GMT
x-yandex-req-id: 1669292667279407-16375413180288844838-sas3-0979-e6b-sas-l7-balancer-8080-BAL-7415
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
vak345.com/s.js?v=bfb081b10b3523b72ceb91b10e4636a7
104.21.81.250200 OK 0 B URL HTTP/2 vak345.com/s.js?v=bfb081b10b3523b72ceb91b10e4636a7
IP 104.21.81.250:0
GET /s.js?v=bfb081b10b3523b72ceb91b10e4636a7 HTTP/1.1
Host: vak345.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 12:24:26 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-movieads-country: NO
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oBShqNdIp0luvzVSq%2BzcVewbtsmPnkttDn%2BcV0fS0DdCmh%2FVdmWTDH2AmYjwj9dMVaBRxrYy6uHd8UqoFxxVXKXEqG1dPw%2F%2BKP%2BAtvjoI2fzDF3%2FgS8WNyqB%2FlHO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f21f1bdb69b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.yapx.cc/U5TJH.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5TJH.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMJrto5ta%2BC06UhpS3hJqgmuJt4YTz3ZjgvhnkHZN%2BDyaMrGVGIObAY42I78VyMslInoeS3roaedNmTyz6FNHQC36mfGm9x%2F5r5PyYcP0oZZECdzIY8mP8jA1Ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1d0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yandex.ru/an/count/WN0ejI_zODe0DGi0v18LqbDdXR8TpmK0sW4GmO200J5xOdzZ000003Yag3M80WEv0a0oyQL0al4oy0BqjD3K0Q1zy0K1e0Rk0Sa6UnvjfBJxGqwf1mpDv9mcDlbW-0S2q0Y2W8200e0A0OWA0uWB1geB456vsH4CpG00_IL_V3RkWO20W8W4g0-CchFswiJD_62G4B3XqUYjtvk7QQU-pQ8G0k0K0V0LmOhsxAEFlFnZoHRmFzWMWHUe5mtG627u68ZsuAZPZSUIUe0PYHcy2hWP____0S0P-woLiB-gh8DWqXaIUM5YSrzpPN9sPN8lSZSrDYqow1cA0l0PWC83c1hKmrEm6qYu6mE270rbD44wC6TuD6TmC6KtwHo07Vz_W202Y20Cq27___y1rIB__t__WIC00000003mFn40CWDjc54PF3dbEnhT6hbN9U2G9kEItHB30kwADJ_r7fK50Abq7Hxz0ZhOEIz8qYXE3f51A000~1=WLKejI_zO6S0NGe011D4Aa9sPm4GW8200OIw_gBgX-2DcG600G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0UW1-06W0exwXG6m0ua5Y0NLo06G1REX3B05W8y3k0M0ZmF01Rd0gmB81SUIJD05p9y1g0Rk0Qa73Ctad2Os-M2u1u05u0U62j08keY0WSA2W0RW28VzGkW91u0A0VWAWBKOw0oR1iWGmB2GWeWI0P0I0QWJlDgTe-IQePKNW1I0W884q1J_n85Gw1IC0iaMy3-O5vUrj2ou5m705xNM0Q0PxW6u6V___m616l__7qvH-qqBe1he-hBStFIklsMe7W6m7m787yMHa56f83rPGBfgLvq_k23daoZL8l__V_-18m0000000F0_1W1QrsX39OO7Q-GaSogbSmIuxoD7Ovlm0W00~1?stat-id=3&test-tag=2802655139256849&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&format-type=118&actual-format=14&pcodever=685034&banner-test-tags=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjU4MTY4MSJ9&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0&pcode-active-testids=685676%2C0%2C27&width=266&height=300&confirmTime=2100000&confirmRatio=1000000&wmode=0&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0
77.88.55.70200 OK 0 B URL HTTP/2 yandex.ru/an/count/WN0ejI_zODe0DGi0v18LqbDdXR8TpmK0sW4GmO200J5xOdzZ000003Yag3M80WEv0a0oyQL0al4oy0BqjD3K0Q1zy0K1e0Rk0Sa6UnvjfBJxGqwf1mpDv9mcDlbW-0S2q0Y2W8200e0A0OWA0uWB1geB456vsH4CpG00_IL_V3RkWO20W8W4g0-CchFswiJD_62G4B3XqUYjtvk7QQU-pQ8G0k0K0V0LmOhsxAEFlFnZoHRmFzWMWHUe5mtG627u68ZsuAZPZSUIUe0PYHcy2hWP____0S0P-woLiB-gh8DWqXaIUM5YSrzpPN9sPN8lSZSrDYqow1cA0l0PWC83c1hKmrEm6qYu6mE270rbD44wC6TuD6TmC6KtwHo07Vz_W202Y20Cq27___y1rIB__t__WIC00000003mFn40CWDjc54PF3dbEnhT6hbN9U2G9kEItHB30kwADJ_r7fK50Abq7Hxz0ZhOEIz8qYXE3f51A000~1=WLKejI_zO6S0NGe011D4Aa9sPm4GW8200OIw_gBgX-2DcG600G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0UW1-06W0exwXG6m0ua5Y0NLo06G1REX3B05W8y3k0M0ZmF01Rd0gmB81SUIJD05p9y1g0Rk0Qa73Ctad2Os-M2u1u05u0U62j08keY0WSA2W0RW28VzGkW91u0A0VWAWBKOw0oR1iWGmB2GWeWI0P0I0QWJlDgTe-IQePKNW1I0W884q1J_n85Gw1IC0iaMy3-O5vUrj2ou5m705xNM0Q0PxW6u6V___m616l__7qvH-qqBe1he-hBStFIklsMe7W6m7m787yMHa56f83rPGBfgLvq_k23daoZL8l__V_-18m0000000F0_1W1QrsX39OO7Q-GaSogbSmIuxoD7Ovlm0W00~1?stat-id=3&test-tag=2802655139256849&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&format-type=118&actual-format=14&pcodever=685034&banner-test-tags=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjU4MTY4MSJ9&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0&pcode-active-testids=685676%2C0%2C27&width=266&height=300&confirmTime=2100000&confirmRatio=1000000&wmode=0&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0
IP 77.88.55.70:0
GET /an/count/WN0ejI_zODe0DGi0v18LqbDdXR8TpmK0sW4GmO200J5xOdzZ000003Yag3M80WEv0a0oyQL0al4oy0BqjD3K0Q1zy0K1e0Rk0Sa6UnvjfBJxGqwf1mpDv9mcDlbW-0S2q0Y2W8200e0A0OWA0uWB1geB456vsH4CpG00_IL_V3RkWO20W8W4g0-CchFswiJD_62G4B3XqUYjtvk7QQU-pQ8G0k0K0V0LmOhsxAEFlFnZoHRmFzWMWHUe5mtG627u68ZsuAZPZSUIUe0PYHcy2hWP____0S0P-woLiB-gh8DWqXaIUM5YSrzpPN9sPN8lSZSrDYqow1cA0l0PWC83c1hKmrEm6qYu6mE270rbD44wC6TuD6TmC6KtwHo07Vz_W202Y20Cq27___y1rIB__t__WIC00000003mFn40CWDjc54PF3dbEnhT6hbN9U2G9kEItHB30kwADJ_r7fK50Abq7Hxz0ZhOEIz8qYXE3f51A000~1=WLKejI_zO6S0NGe011D4Aa9sPm4GW8200OIw_gBgX-2DcG600G680UEjsTEQ0P01yh3IkDQ0W802c06ghDAuLhW1bf7ss2FO0OgZeA81u06MbQ-P0UW1-06W0exwXG6m0ua5Y0NLo06G1REX3B05W8y3k0M0ZmF01Rd0gmB81SUIJD05p9y1g0Rk0Qa73Ctad2Os-M2u1u05u0U62j08keY0WSA2W0RW28VzGkW91u0A0VWAWBKOw0oR1iWGmB2GWeWI0P0I0QWJlDgTe-IQePKNW1I0W884q1J_n85Gw1IC0iaMy3-O5vUrj2ou5m705xNM0Q0PxW6u6V___m616l__7qvH-qqBe1he-hBStFIklsMe7W6m7m787yMHa56f83rPGBfgLvq_k23daoZL8l__V_-18m0000000F0_1W1QrsX39OO7Q-GaSogbSmIuxoD7Ovlm0W00~1?stat-id=3&test-tag=2802655139256849&banner-sizes=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjIwMHgzMDAifQ%3D%3D&format-type=118&actual-format=14&pcodever=685034&banner-test-tags=eyI3MjA1NzYwNTY0MDA0NzY3MyI6IjU4MTY4MSJ9&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0&pcode-active-testids=685676%2C0%2C27&width=266&height=300&confirmTime=2100000&confirmRatio=1000000&wmode=0&order-banners-options=eyI3MjA1NzYwNTY0MDA0NzY3MyI6MjA0OH0 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://synthira.ru
Content-Type: application/x-www-form-urlencoded
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 24 Nov 2022 12:24:31 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://synthira.ru
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:31 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:31 GMT; SameSite=None; Secure
i=k07ovvLBbZbr6ySuNBQUgb0Z904J07VgKew7f2sOmnBaXqRbLqR8+y5gvtM1qeEfJQZ18McQa4wz+AhwWnYHmRE3374=; Expires=Sat, 23-Nov-2024 12:24:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
pragma: no-cache
expires: Thu, 24 Nov 2022 12:24:31 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
x-xss-protection: 1; mode=block
last-modified: Thu, 24 Nov 2022 12:24:31 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
content-type: image/gif
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:wght@100;300;400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 12:24:26 GMT
date: Thu, 24 Nov 2022 12:24:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.yapx.cc/U5T3y.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5T3y.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:28 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TNEFP3A1WR%2BNt%2FAwBRbpnNOhXUZ%2BRU2S9ivLuDSHVEF8TJM8C7CU0Ov1yc7JHGRYrYg6E%2F0SPNYl2ggOuLy82w37PDibdcBV6rTSodmSgK%2FkSGmBZdBw5JTUQlc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a190b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.yapx.cc/U5T4M.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5T4M.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DEbUtHGIQimgMKQ%2BXuJhxXKKf%2FxaZF9JrzE0RehSotSJb6WPPJV%2FICKRn6rRkA2ZcUvPiwsYpbZp6dQY0VP5FOlMoQxNo5G3aCQmYCU%2BJYpkP%2BwzbXjnxiW4dCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d3a1b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.yapx.cc/U5T31.jpg
172.67.147.15403 Forbidden 0 B IP 172.67.147.15:0
GET /U5T31.jpg HTTP/1.1
Host: i.yapx.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://synthira.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 24 Nov 2022 12:24:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sapfZFxCGMSljhPIdmt9DM3vpJhpKOMwhUsE5ELlaMsHEswJtgXqvPas3v7r8JuqPOY1NKCNTlxLP%2BWF9dRzJnvX2VY%2BLDlj7uuSLK4Qzef1Ui0d%2B%2FKH5djE91w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f21f2d6a6f0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
an.yandex.ru/event_confirmation
77.88.21.90200 OK 0 B URL HTTP/2 an.yandex.ru/event_confirmation
IP 77.88.21.90:0
OPTIONS /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://synthira.ru/
Origin: https://synthira.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
date: Thu, 24 Nov 2022 12:24:29 GMT
access-control-max-age: 1728000
access-control-allow-headers: content-type
access-control-allow-origin: https://synthira.ru
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yandex.ru/ads/meta/436754?target-ref=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&pcode-test-ids=657518%2C0%2C39%3B677435%2C0%2C94%3B685676%2C0%2C27%3B678363%2C0%2C78%3B679612%2C0%2C82%3B683848%2C0%2C52%3B679029%2C0%2C78%3B685034%2C0%2C21&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5FILUnZcYuCcFtvNkCSLtq0aLfov%2B9QlBNJcal4129yonNmxLmcGf5YkCVlHKuaCIELVSCJVIM4qoUqGVdrUmCmCFU5qzO2ePXmx%2BLr7ubLfvFqsf%2F29%2BLF4n7%2F%2BZ58gJ9h6gRhuPj59sVijYTi%2BI8WC6nWNWpUyVmtUCFGeMlbPCSI3NhLnI4AU5RVeGIcHkpCicTgX34hVkyqDZEr1kqFwHcpbN5FYRgl%2Fsnk52BGVaUazoo2l%2BKpmdOoMVCeGJcBiY4L2NxAKFSFMlx1VECSIUoxt0cn8v0g7mgKpigzRGvMJclRpchaZa2UjNpJIMJxMiUBLJBczDkQ%2B24aGCwR5qDhe6ROMomWc9jESY%2FYxRWuMZUziQlo15ygKFSNLhVGXKgG8xywI6jnjIGB70XD%2BIkLOO014gRROc2Tsq0qkXOMqZKszVfWoCaBG4TPZq4YxBkV52BERcku%2B4SB3w1a4vM5OiLv%2Fnc%2B7teYno%2Bs4bgmbX3GED0Gv8DiQrLmfNxbdO6zLHCJ2sreu54QUrwxpF0WqYqhAqLcVGg7qfwnTKGXpo8NTJrax1yQSbuBPpcm8QQbRaYCW0p6k7rpoXp0wPefvuwHsMADJiNFrYCjEF2XnGCmfg5A8HlCh5JlAvP19PPudu9u9iOkH3mp6a0luQQppmqFyXIlFZV2k0Hop24H3CJa4EvFW1WwGhFrrodO7PnRg72MswtwFmypJSfWLhG6cZhERw0q6MqSk8wK91wnMj0cytHrsh50tgChJfVMJwkhn%2FrxoMMeRCBjXAeVo4K04rdnMmyR9ts4DAK9QVurxoeBH%2FfnXJQNzDaiYRQSQ5Iaw%2FwxkQDHGWMDxzff3OSswFBCAKXW4gmDEGj6VNItkWOduwd7Cl9a0wJMxrH3FE5KXXgbXUTY3g1%2FxXBwYI2qdhQt3zmOrkAqqar1hNn3kvFhjYyGjtOfcsMJ40RuVbaF3oM3DeP2A4viqK%2B9Q14UhONcqlxYm0uYunEyyEgiVI44h%2FEP5fl0Mph0iTD1Q9cdYbssFg9zaYOKgtClnSQIA%2BN5zloqIZXltsHKt3sdJHE4CE%2FNczgnQTJSwanZzaVx9EukYtDiKxjGZqwfOGpQAdLrNTTYksAKQfRHlCi3V3OaeHE88GMo%2BjD%2F6ETV0pDBmKwrRnJWVTM64XgwbnWUS44yz%2F4upKjz%2BK4S5PXI39D1HNv7RyrfDX%2BBOCTHCnfywzEoPGxdVv%2Fc0IsMWssmxyX0nBVo5pLkdlzi9w0WDq0kvNYVxDE96B4MLpm9xUfQoz13VEqggRzyGuaAfIUhHoNhRQj7oOKmbmD8GYBQ0%2BhPWUJp2MGem4YjT1ZEdp9x4rjkx5432qPyplY1LghSQIIkWXcib%2BdI%2FfF2mjf5%2F%2BY4PleduCUGodPPOIdjEjXiUsEC3mJNPhckPSOZc67Q6203malOq4aoH4s%2F9%2Ffv%2F6p3n66u7%2Fpsv%2F347vpmL97vbq7vrhavvJ%2BjhTF0%2BqFm6A5Il8oqXdUVyO%2FQwJvF7e765uWnL%2BDb993dh%2F03eP79%2BnZ3tf88%2BtPV7rb7y4d%2F9nfm9d3X6%2FuP5vH25cOPt8e96bbGFdfb6%2Fj0MfR9rjsgoaBvBGa4aubkYzfuO44eE%2FsWViG6bOfWIhgoErMI5%2Fp%2BgNG%2BRlGpFYCUHNXYjMj2Yo2TNEofPCg5AZpqqwyedKV2Aj67eNIInyCi1O8reoA49bIoitPAiR9YYEooNIN9oYKVInKnlk0J2m15nmOipFsvVJYu1Gb%2BS2F38E3X6O%2FIxJbKFZYkN7danU53d2VYzl5exIH%2FeDnWV3%2BnlAKmFFhkHnYFJbmujoEmc6zHn5k7ikSPQP%2FRAAjT%2BmDmuVYOTVAPC90To5B35rpMp4CWLaNzR1Kjv1ubiXcMWjbq2mflnKC7PU9uq8H0BpKLZ%2Bo%2FBY06qC0sE20uwa8NqYr%2BNgzqYhy39%2Fc34wP1kyCZ6qPewp6la3HqeOnjajHdNCFcevUYB9AsIz%2F%2FBUYeckk%3D&pcode-icookie=15eFEfEm2c%2FqwLNQTOVazwmid%2Fs%2BIjxsyaIz2%2FQJwvg7WGHZkb19lUEBwT5b6ijO26VFyvrfFOjKJBgZd8sqSW5Qb1Q%3D&duid=MTY2OTI5MjY2NzY5OTY4NjcxNg%3D%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=550855325515778&ad-session-id=8899831669292667432&target-id=69358816&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&pcode-version=685034&pcodever=685034&flash-ver=0&available-width=266&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A266%2C%22h%22%3A0%2C%22width%22%3A266%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A999%2C%22top%22%3A43%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=4644&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNTJ9ChKkpJDkOOqBKFDnDLb91260rWk7zeuNli145bJ-C17P85zaUVpyhq42aqMItmvTxHqrIG1feRS0K-k3tHyv65auTbf-BvpMgN5AWxjNTCOiUdNq1qXd3_OsIyZGY8YMYhTjxQ2kJo5IexM1eYdAq9ZQdyAqO3BkoHWgZjRIUpVWrU87ucXGbGHsTdogRXB7g9JgdDYbA7PNwmy1WXPWAj3kMSJYeoPehE0aEfGL54PaxA0vImPPAeQbs-dApqRUJRpNqkuoe5wiUcad3dobjCaPSJuk4TVhRPb0iVcK-oMUNTFLBP-grCwgX6zoRcl7w_7NsB5glV-OkiZbkaBGZBFJw40If_VI0eQNZzmzG6lirc5gpEozvcEYJ7EuNXDraIz22dWoTeOsazJtCqFTnyppVAllnKg1zk6j1sSpJobQ2UB5gkL6uTbZsS1-WOwn2En_REPiNjg_XuGDwntQkaKzle1Zf_kftrBy2Cks7wj0Y5v5h_csin5IRA3Hz1pI9mUG8ksKe6UC9zA2Iny4wuowFMT9B43_cMInC7yXPz4Nv0leFvMpkhdZ8Uo13P44dYw_AZ8ZsheP4B6OujeYxzsiOrZ-v-N6xA4u5Z3GTByzYd8MMP-Y8P_esmPpwUiOddktJjmKHsSD_skfo03yM4f2cksr9rEjfwhPn6MvjxuFfBl4TuLd7WZ_dP96JLf5y72AJTxhxZUfBUu44lMP4mD5QjwW69PnGpiL6U8Oh9Pu_ziSFBFitUqvDN58GXP4MdDh_7fDS8KHwd9Vvp0f28kcRyL5boC17TeU8Ats8pcG1AmLSCoTkob1ksInNfbiz-J6ROg4nLsRC3eikojUEbzZcX-Ii32_6jfMS2M-d-EM_VojInEE-83hhn0O7_Mc3m87MP6sw_1-Dvdf3RTsU8Vp1XpEBqM-Ie80ukyphNCpycgT6mybyyPBcticJZpU9VAfxmCk0AWg6BJl_JB1icGYGTCs9NnTcsKrUIIth0-4JuaHCO36sIObKGn-533nfbgHiV8c1IpjpNtUW9dkEdwrZQJRdoqvaPZdBb0tQD2cu59cz0q30BCyf1sRTOl_WVEEl_0LkuSwc--L163mbaKn6HjB7V-vvoDgMXtW6g3Ws37FW8zutqH9R1HABOBxRqtLyza0CTWYB_PbxIN9seoB6AsEmm_gVAWeWkehrTjnyrROnelpslip9LBsMCopM81OHWB3yMc_ot0KYjjFB63U-oPS2TZps3ajfdiwH8UCSgNS9tvcXre17zICspcVUjAvPxcizkSP8RCnUsRKRJrDKmWs-sV99HY2K1NHCf5uXKHU9b0sVjArI3Nuu9xmc3SbxWRmKCKGSSbGjspm9kmacz_M48T_-l8mDicZEZn6QNshh8P3Ax427xyBOt2Epm61ljzyy6IymS2VTT5BWza7IC-U2bNU7ihezpxq9Mi9lNzoj5arAfhXmLZ0yK732Jqc9VfIDJXXvCY4Q_8rU_B1ahokGD4qRZkqlRl16ivHGRVFqqOmyFR6fdeoWSjVlM5gpxehiZaaMiFXP9T5wh-vQKVKqKmUukR_DO2KRbivST2r35vVYYl_kiudwbKMufm35m3-sgvl50K8Mbv4chDWhHwbLsrD1l3-_IdSZZpY-V9yTm2HtvlctplY8XdebsG7eznFiYY6RkSZUuoolD2h1qhVKYsy1aU0T2QLk8tNC-DBS7XOP_InCLJAQXCHml6Lcm-4fnHwyZ2QzUU4hbPwZcTH8XPfxYVXXV_kJ6xNTEPLh7JfSI70EXFh41jZenksKS50_7BfslyFE5dhL6VHwl0Wc9OMtLr-L_tzhz8hBIKVJ7xQUnYB5lO9nbpx-hONYIJ-uGEnneuPFU7bMWEX_BrkCAT99J79_XaNrImYvUl15oFzSfML_213u9Yg2x9xl2DsBOA-E8JlAF4EmN8cp9eo9fId3Brg3Jg2MBZvIH4CCJ_blvY6qIh441GiGlMLj2VJHazsSDjClvjH-maFJw3phpW73PaqdKbaF_fJJlZR7GAWv8TXkKLB6OtB6XqxC8_M8c0BeL458CC7jtwTx1TaS9dP4DoZ7uDqFVAXV8kbpxxh-JjD3NaCdNt6BWwqCnpKjy2YGyXi3JZuGDrjBgs8d0qke_uyz2_t80462Go9ygdhpDU0mD_6xfMfJfbhePnGeeW7xjCDfbs8xuEKPO-IxGS00xpQ5MjdXey6CwqrG7Q6QRIUlocC6-mF_eefse1FsYbec3YhP3_sC7lqXr7d5SO9Gfj2kBSIF-hs111Xn0l9jeXiIzjzxUnLjHDIGcGuXK-Pt9Jj1_4tEcWdAOGzIJoxf-MCD_IPs4bOUNbqvdz6Jemr9sS3a0TSGRkFIW3hfyNx8wg7W85qemZe2G33zrrPAyxdtkVOUQgsKJBXiyT8PYI96VBW66ZwUueLJYngubmCJbkNvwjQU7C94oIZUvYrQprUK0h08-4rHIrbcFmboHw-s_0135zQWzp3r-mwb6Upddnj-vSSqHfJW2Xqk7B2n8fl6VPul_iC-d4kAhe-CinzUPp4_bX9CFbpxAskepwpClulp8gVmnE2bZx_uJS5Ep2VuUP89VbW7dXwQIHVMDeulIaP2D0hb8l2t_v7ceww4NZafN-NdirXWOW98pJDJz95_l1LPek00FK1C2-tOvJjbdROWguCzP03zMFAAp3Q5cyIkiWouHjeFz2BNNE70Cf6lZZgyh_U8YMteBiH0FLEsVpjZbgQj8BPBDfjGoBvYBO4klkweuGjhd5pOKvTNaZ3Aor-ZUYJTqJK6TAiZ-h8eT1rcNOPeHRKqxOijlXQBeb3VIIYTUGTo-oPzuj0yPwkjVRMYypXPC5BHuu7m7ve5H-ZF-Nlnd7pc_ApaKy2p9OaPzjTTtnNHGMKOlNeLAqyweTkc2IpaF4OqVqlrVDPZw9dY79AtVaLjPZ8vn6g3ntnSeJU65u9LkUae50-8qxTUDsx2lT1XqGXt_ZdxvWsvT709r_Hb4Wox6pNNB5ntY9wwKaq98NsEHVROxjK4pw00GqaEyP3OQlsOSO_FTfvOZPJYmFd94SJ71YBciV6_bsl2nGhkCFNAFfxdxDpt_cRjuX4HlATpPBK81Vq3K8lsolfrxbSYTgdWvW3qdYpMPJi7Fxl4-19awRWOSem2jQnKifkt-e7gxU3hfPcn9bZoDfMRuev1vOO4a0bOKdlNFkY5rRm3k4LY3Mb6boqNXnqlf2sd6lq89rLiSbS2dhvslCJVDlf5bqvgq2ioE2QoP2x5ivfkg2K5Jtm5qoWk9U2V7XwdlWCjc1DJx_yWm3vmAt43SniPuHmRXqO99Kq61SN7ZLQlP_OpXwDGlnQYu8z9_ycyVOWVKsGI3Ea0M-LAPibcXJZ-dk7hrhoz2QT8ZJtsZu7MZiY6OduVh7vtgFKwCZejYPvlkvX3L0mV0WNPP59kgj0i9SI1-8MfTbpoUSOw1-MjZzqx3W3XN8bnGcEndqXT64SVEAGk63GlzmPnwQaFdXhyXuBME_f-755uUG-1uQLCQB-wcWZAc_rLVaqv_nWv62DIE20f64R55_cVjXHMFySLsTuaXHPTNbz-8sxbbzVSgVXnnyRZDnXFkQIBKO6f7ExOr_GOOJEZVoEisyQ0_MWcWJWdMyzRjEyMvaxvK218zTROQWa-4KHjFyV6LIOFlAgAAKao1nXG1tzkxnV3JiBtxvD6RveSvwIx91KT0dHt0auy5VYY-ASrbH0pVFz7spdRffMBwp0Lsv09f3xTbaxRzmtpaTUnBFYWVKLfUDmM0L8XUGo1obVLYXUgyhH4hARtI_BfYMPL7Ie54fc9kPRIl2jOQPyPzGnN-VjdM9R8fbE_XVB0hcHjF2O0ZGf20eEZ3TnWPKBef_N5788WSTEoZ7xGv_xBvWME4VwyZeRpcxxmqHdxbQO4gT2KhvXI9t6bjXZ6pF5sVI0OA1Gb6A8JVAPoQVGA0SD2WA9AJAb1AcE52EASlfV2AVl1quoLlAmlxfNbHFFPCpIMtJVvj6T5hjz--o5nrKjcHSGsS5vIYiIIoRjN8U_9Jnn3GScdMZt9RDKjkVy0S_BqtiRjcYuGi2mro9hMNlq4uLJWABlEX0lo8FN0otCn0vYWQNJuv-FyCdEVrTO0RwvhmruuPcRYjrUdKgbiN_JUM-8uYChNtgN-ncttId4UB4g5yzcd5YfIJDUcQZ42mdHoAyDYq-qKMMajTz-t9hc3mIxWczzFt7Q-k8_cd5SFcAOTXZ1fASIGFWDEG_RXxdIgCtZjiaagiTaaI2kj8rsht4vYPxlySHZ99USk6zGo3xrhKg-xaslJt5ysVoHY_YRjRbnKqItEkGouSUpCsuhXmpZFf_J7NG5Gqg1v5vN_Tv4Mi8I_wo4AlXK33A0LxGMMhb-6fs0OadbuS6z6zNNgiS3IFbrkKLdukvv0rpmU26d1s2BnaMwagaYAQ2x1bIL9cOanI7joHJblQkAJ3h-W3WK4PyZRy1NoISxwDw_dLAVjaZjMoV-A29I4h7gFhd12LDmyVYCKwRy-RUnyQApP3i21c4BZnuR9gVKB0D-&uniformat=true&callback=Ya%5B8711532677008%5D
77.88.55.70200 OK 0 B URL HTTP/2 yandex.ru/ads/meta/436754?target-ref=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&pcode-test-ids=657518%2C0%2C39%3B677435%2C0%2C94%3B685676%2C0%2C27%3B678363%2C0%2C78%3B679612%2C0%2C82%3B683848%2C0%2C52%3B679029%2C0%2C78%3B685034%2C0%2C21&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5FILUnZcYuCcFtvNkCSLtq0aLfov%2B9QlBNJcal4129yonNmxLmcGf5YkCVlHKuaCIELVSCJVIM4qoUqGVdrUmCmCFU5qzO2ePXmx%2BLr7ubLfvFqsf%2F29%2BLF4n7%2F%2BZ58gJ9h6gRhuPj59sVijYTi%2BI8WC6nWNWpUyVmtUCFGeMlbPCSI3NhLnI4AU5RVeGIcHkpCicTgX34hVkyqDZEr1kqFwHcpbN5FYRgl%2Fsnk52BGVaUazoo2l%2BKpmdOoMVCeGJcBiY4L2NxAKFSFMlx1VECSIUoxt0cn8v0g7mgKpigzRGvMJclRpchaZa2UjNpJIMJxMiUBLJBczDkQ%2B24aGCwR5qDhe6ROMomWc9jESY%2FYxRWuMZUziQlo15ygKFSNLhVGXKgG8xywI6jnjIGB70XD%2BIkLOO014gRROc2Tsq0qkXOMqZKszVfWoCaBG4TPZq4YxBkV52BERcku%2B4SB3w1a4vM5OiLv%2Fnc%2B7teYno%2Bs4bgmbX3GED0Gv8DiQrLmfNxbdO6zLHCJ2sreu54QUrwxpF0WqYqhAqLcVGg7qfwnTKGXpo8NTJrax1yQSbuBPpcm8QQbRaYCW0p6k7rpoXp0wPefvuwHsMADJiNFrYCjEF2XnGCmfg5A8HlCh5JlAvP19PPudu9u9iOkH3mp6a0luQQppmqFyXIlFZV2k0Hop24H3CJa4EvFW1WwGhFrrodO7PnRg72MswtwFmypJSfWLhG6cZhERw0q6MqSk8wK91wnMj0cytHrsh50tgChJfVMJwkhn%2FrxoMMeRCBjXAeVo4K04rdnMmyR9ts4DAK9QVurxoeBH%2FfnXJQNzDaiYRQSQ5Iaw%2FwxkQDHGWMDxzff3OSswFBCAKXW4gmDEGj6VNItkWOduwd7Cl9a0wJMxrH3FE5KXXgbXUTY3g1%2FxXBwYI2qdhQt3zmOrkAqqar1hNn3kvFhjYyGjtOfcsMJ40RuVbaF3oM3DeP2A4viqK%2B9Q14UhONcqlxYm0uYunEyyEgiVI44h%2FEP5fl0Mph0iTD1Q9cdYbssFg9zaYOKgtClnSQIA%2BN5zloqIZXltsHKt3sdJHE4CE%2FNczgnQTJSwanZzaVx9EukYtDiKxjGZqwfOGpQAdLrNTTYksAKQfRHlCi3V3OaeHE88GMo%2BjD%2F6ETV0pDBmKwrRnJWVTM64XgwbnWUS44yz%2F4upKjz%2BK4S5PXI39D1HNv7RyrfDX%2BBOCTHCnfywzEoPGxdVv%2Fc0IsMWssmxyX0nBVo5pLkdlzi9w0WDq0kvNYVxDE96B4MLpm9xUfQoz13VEqggRzyGuaAfIUhHoNhRQj7oOKmbmD8GYBQ0%2BhPWUJp2MGem4YjT1ZEdp9x4rjkx5432qPyplY1LghSQIIkWXcib%2BdI%2FfF2mjf5%2F%2BY4PleduCUGodPPOIdjEjXiUsEC3mJNPhckPSOZc67Q6203malOq4aoH4s%2F9%2Ffv%2F6p3n66u7%2Fpsv%2F347vpmL97vbq7vrhavvJ%2BjhTF0%2BqFm6A5Il8oqXdUVyO%2FQwJvF7e765uWnL%2BDb993dh%2F03eP79%2BnZ3tf88%2BtPV7rb7y4d%2F9nfm9d3X6%2FuP5vH25cOPt8e96bbGFdfb6%2Fj0MfR9rjsgoaBvBGa4aubkYzfuO44eE%2FsWViG6bOfWIhgoErMI5%2Fp%2BgNG%2BRlGpFYCUHNXYjMj2Yo2TNEofPCg5AZpqqwyedKV2Aj67eNIInyCi1O8reoA49bIoitPAiR9YYEooNIN9oYKVInKnlk0J2m15nmOipFsvVJYu1Gb%2BS2F38E3X6O%2FIxJbKFZYkN7danU53d2VYzl5exIH%2FeDnWV3%2BnlAKmFFhkHnYFJbmujoEmc6zHn5k7ikSPQP%2FRAAjT%2BmDmuVYOTVAPC90To5B35rpMp4CWLaNzR1Kjv1ubiXcMWjbq2mflnKC7PU9uq8H0BpKLZ%2Bo%2FBY06qC0sE20uwa8NqYr%2BNgzqYhy39%2Fc34wP1kyCZ6qPewp6la3HqeOnjajHdNCFcevUYB9AsIz%2F%2FBUYeckk%3D&pcode-icookie=15eFEfEm2c%2FqwLNQTOVazwmid%2Fs%2BIjxsyaIz2%2FQJwvg7WGHZkb19lUEBwT5b6ijO26VFyvrfFOjKJBgZd8sqSW5Qb1Q%3D&duid=MTY2OTI5MjY2NzY5OTY4NjcxNg%3D%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=550855325515778&ad-session-id=8899831669292667432&target-id=69358816&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&pcode-version=685034&pcodever=685034&flash-ver=0&available-width=266&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A266%2C%22h%22%3A0%2C%22width%22%3A266%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A999%2C%22top%22%3A43%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=4644&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNTJ9ChKkpJDkOOqBKFDnDLb91260rWk7zeuNli145bJ-C17P85zaUVpyhq42aqMItmvTxHqrIG1feRS0K-k3tHyv65auTbf-BvpMgN5AWxjNTCOiUdNq1qXd3_OsIyZGY8YMYhTjxQ2kJo5IexM1eYdAq9ZQdyAqO3BkoHWgZjRIUpVWrU87ucXGbGHsTdogRXB7g9JgdDYbA7PNwmy1WXPWAj3kMSJYeoPehE0aEfGL54PaxA0vImPPAeQbs-dApqRUJRpNqkuoe5wiUcad3dobjCaPSJuk4TVhRPb0iVcK-oMUNTFLBP-grCwgX6zoRcl7w_7NsB5glV-OkiZbkaBGZBFJw40If_VI0eQNZzmzG6lirc5gpEozvcEYJ7EuNXDraIz22dWoTeOsazJtCqFTnyppVAllnKg1zk6j1sSpJobQ2UB5gkL6uTbZsS1-WOwn2En_REPiNjg_XuGDwntQkaKzle1Zf_kftrBy2Cks7wj0Y5v5h_csin5IRA3Hz1pI9mUG8ksKe6UC9zA2Iny4wuowFMT9B43_cMInC7yXPz4Nv0leFvMpkhdZ8Uo13P44dYw_AZ8ZsheP4B6OujeYxzsiOrZ-v-N6xA4u5Z3GTByzYd8MMP-Y8P_esmPpwUiOddktJjmKHsSD_skfo03yM4f2cksr9rEjfwhPn6MvjxuFfBl4TuLd7WZ_dP96JLf5y72AJTxhxZUfBUu44lMP4mD5QjwW69PnGpiL6U8Oh9Pu_ziSFBFitUqvDN58GXP4MdDh_7fDS8KHwd9Vvp0f28kcRyL5boC17TeU8Ats8pcG1AmLSCoTkob1ksInNfbiz-J6ROg4nLsRC3eikojUEbzZcX-Ii32_6jfMS2M-d-EM_VojInEE-83hhn0O7_Mc3m87MP6sw_1-Dvdf3RTsU8Vp1XpEBqM-Ie80ukyphNCpycgT6mybyyPBcticJZpU9VAfxmCk0AWg6BJl_JB1icGYGTCs9NnTcsKrUIIth0-4JuaHCO36sIObKGn-533nfbgHiV8c1IpjpNtUW9dkEdwrZQJRdoqvaPZdBb0tQD2cu59cz0q30BCyf1sRTOl_WVEEl_0LkuSwc--L163mbaKn6HjB7V-vvoDgMXtW6g3Ws37FW8zutqH9R1HABOBxRqtLyza0CTWYB_PbxIN9seoB6AsEmm_gVAWeWkehrTjnyrROnelpslip9LBsMCopM81OHWB3yMc_ot0KYjjFB63U-oPS2TZps3ajfdiwH8UCSgNS9tvcXre17zICspcVUjAvPxcizkSP8RCnUsRKRJrDKmWs-sV99HY2K1NHCf5uXKHU9b0sVjArI3Nuu9xmc3SbxWRmKCKGSSbGjspm9kmacz_M48T_-l8mDicZEZn6QNshh8P3Ax427xyBOt2Epm61ljzyy6IymS2VTT5BWza7IC-U2bNU7ihezpxq9Mi9lNzoj5arAfhXmLZ0yK732Jqc9VfIDJXXvCY4Q_8rU_B1ahokGD4qRZkqlRl16ivHGRVFqqOmyFR6fdeoWSjVlM5gpxehiZaaMiFXP9T5wh-vQKVKqKmUukR_DO2KRbivST2r35vVYYl_kiudwbKMufm35m3-sgvl50K8Mbv4chDWhHwbLsrD1l3-_IdSZZpY-V9yTm2HtvlctplY8XdebsG7eznFiYY6RkSZUuoolD2h1qhVKYsy1aU0T2QLk8tNC-DBS7XOP_InCLJAQXCHml6Lcm-4fnHwyZ2QzUU4hbPwZcTH8XPfxYVXXV_kJ6xNTEPLh7JfSI70EXFh41jZenksKS50_7BfslyFE5dhL6VHwl0Wc9OMtLr-L_tzhz8hBIKVJ7xQUnYB5lO9nbpx-hONYIJ-uGEnneuPFU7bMWEX_BrkCAT99J79_XaNrImYvUl15oFzSfML_213u9Yg2x9xl2DsBOA-E8JlAF4EmN8cp9eo9fId3Brg3Jg2MBZvIH4CCJ_blvY6qIh441GiGlMLj2VJHazsSDjClvjH-maFJw3phpW73PaqdKbaF_fJJlZR7GAWv8TXkKLB6OtB6XqxC8_M8c0BeL458CC7jtwTx1TaS9dP4DoZ7uDqFVAXV8kbpxxh-JjD3NaCdNt6BWwqCnpKjy2YGyXi3JZuGDrjBgs8d0qke_uyz2_t80462Go9ygdhpDU0mD_6xfMfJfbhePnGeeW7xjCDfbs8xuEKPO-IxGS00xpQ5MjdXey6CwqrG7Q6QRIUlocC6-mF_eefse1FsYbec3YhP3_sC7lqXr7d5SO9Gfj2kBSIF-hs111Xn0l9jeXiIzjzxUnLjHDIGcGuXK-Pt9Jj1_4tEcWdAOGzIJoxf-MCD_IPs4bOUNbqvdz6Jemr9sS3a0TSGRkFIW3hfyNx8wg7W85qemZe2G33zrrPAyxdtkVOUQgsKJBXiyT8PYI96VBW66ZwUueLJYngubmCJbkNvwjQU7C94oIZUvYrQprUK0h08-4rHIrbcFmboHw-s_0135zQWzp3r-mwb6Upddnj-vSSqHfJW2Xqk7B2n8fl6VPul_iC-d4kAhe-CinzUPp4_bX9CFbpxAskepwpClulp8gVmnE2bZx_uJS5Ep2VuUP89VbW7dXwQIHVMDeulIaP2D0hb8l2t_v7ceww4NZafN-NdirXWOW98pJDJz95_l1LPek00FK1C2-tOvJjbdROWguCzP03zMFAAp3Q5cyIkiWouHjeFz2BNNE70Cf6lZZgyh_U8YMteBiH0FLEsVpjZbgQj8BPBDfjGoBvYBO4klkweuGjhd5pOKvTNaZ3Aor-ZUYJTqJK6TAiZ-h8eT1rcNOPeHRKqxOijlXQBeb3VIIYTUGTo-oPzuj0yPwkjVRMYypXPC5BHuu7m7ve5H-ZF-Nlnd7pc_ApaKy2p9OaPzjTTtnNHGMKOlNeLAqyweTkc2IpaF4OqVqlrVDPZw9dY79AtVaLjPZ8vn6g3ntnSeJU65u9LkUae50-8qxTUDsx2lT1XqGXt_ZdxvWsvT709r_Hb4Wox6pNNB5ntY9wwKaq98NsEHVROxjK4pw00GqaEyP3OQlsOSO_FTfvOZPJYmFd94SJ71YBciV6_bsl2nGhkCFNAFfxdxDpt_cRjuX4HlATpPBK81Vq3K8lsolfrxbSYTgdWvW3qdYpMPJi7Fxl4-19awRWOSem2jQnKifkt-e7gxU3hfPcn9bZoDfMRuev1vOO4a0bOKdlNFkY5rRm3k4LY3Mb6boqNXnqlf2sd6lq89rLiSbS2dhvslCJVDlf5bqvgq2ioE2QoP2x5ivfkg2K5Jtm5qoWk9U2V7XwdlWCjc1DJx_yWm3vmAt43SniPuHmRXqO99Kq61SN7ZLQlP_OpXwDGlnQYu8z9_ycyVOWVKsGI3Ea0M-LAPibcXJZ-dk7hrhoz2QT8ZJtsZu7MZiY6OduVh7vtgFKwCZejYPvlkvX3L0mV0WNPP59kgj0i9SI1-8MfTbpoUSOw1-MjZzqx3W3XN8bnGcEndqXT64SVEAGk63GlzmPnwQaFdXhyXuBME_f-755uUG-1uQLCQB-wcWZAc_rLVaqv_nWv62DIE20f64R55_cVjXHMFySLsTuaXHPTNbz-8sxbbzVSgVXnnyRZDnXFkQIBKO6f7ExOr_GOOJEZVoEisyQ0_MWcWJWdMyzRjEyMvaxvK218zTROQWa-4KHjFyV6LIOFlAgAAKao1nXG1tzkxnV3JiBtxvD6RveSvwIx91KT0dHt0auy5VYY-ASrbH0pVFz7spdRffMBwp0Lsv09f3xTbaxRzmtpaTUnBFYWVKLfUDmM0L8XUGo1obVLYXUgyhH4hARtI_BfYMPL7Ie54fc9kPRIl2jOQPyPzGnN-VjdM9R8fbE_XVB0hcHjF2O0ZGf20eEZ3TnWPKBef_N5788WSTEoZ7xGv_xBvWME4VwyZeRpcxxmqHdxbQO4gT2KhvXI9t6bjXZ6pF5sVI0OA1Gb6A8JVAPoQVGA0SD2WA9AJAb1AcE52EASlfV2AVl1quoLlAmlxfNbHFFPCpIMtJVvj6T5hjz--o5nrKjcHSGsS5vIYiIIoRjN8U_9Jnn3GScdMZt9RDKjkVy0S_BqtiRjcYuGi2mro9hMNlq4uLJWABlEX0lo8FN0otCn0vYWQNJuv-FyCdEVrTO0RwvhmruuPcRYjrUdKgbiN_JUM-8uYChNtgN-ncttId4UB4g5yzcd5YfIJDUcQZ42mdHoAyDYq-qKMMajTz-t9hc3mIxWczzFt7Q-k8_cd5SFcAOTXZ1fASIGFWDEG_RXxdIgCtZjiaagiTaaI2kj8rsht4vYPxlySHZ99USk6zGo3xrhKg-xaslJt5ysVoHY_YRjRbnKqItEkGouSUpCsuhXmpZFf_J7NG5Gqg1v5vN_Tv4Mi8I_wo4AlXK33A0LxGMMhb-6fs0OadbuS6z6zNNgiS3IFbrkKLdukvv0rpmU26d1s2BnaMwagaYAQ2x1bIL9cOanI7joHJblQkAJ3h-W3WK4PyZRy1NoISxwDw_dLAVjaZjMoV-A29I4h7gFhd12LDmyVYCKwRy-RUnyQApP3i21c4BZnuR9gVKB0D-&uniformat=true&callback=Ya%5B8711532677008%5D
IP 77.88.55.70:0
GET /ads/meta/436754?target-ref=https%3A%2F%2Fsynthira.ru%2Fload%2Fdrugie_igry%2Famong_us%2Fchit_na_among_us_hackermode_v19_4_dlja_pk_25_10_2020%2F439-1-0-10987&charset=utf-8&pcode-test-ids=657518%2C0%2C39%3B677435%2C0%2C94%3B685676%2C0%2C27%3B678363%2C0%2C78%3B679612%2C0%2C82%3B683848%2C0%2C52%3B679029%2C0%2C78%3B685034%2C0%2C21&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5FILUnZcYuCcFtvNkCSLtq0aLfov%2B9QlBNJcal4129yonNmxLmcGf5YkCVlHKuaCIELVSCJVIM4qoUqGVdrUmCmCFU5qzO2ePXmx%2BLr7ubLfvFqsf%2F29%2BLF4n7%2F%2BZ58gJ9h6gRhuPj59sVijYTi%2BI8WC6nWNWpUyVmtUCFGeMlbPCSI3NhLnI4AU5RVeGIcHkpCicTgX34hVkyqDZEr1kqFwHcpbN5FYRgl%2Fsnk52BGVaUazoo2l%2BKpmdOoMVCeGJcBiY4L2NxAKFSFMlx1VECSIUoxt0cn8v0g7mgKpigzRGvMJclRpchaZa2UjNpJIMJxMiUBLJBczDkQ%2B24aGCwR5qDhe6ROMomWc9jESY%2FYxRWuMZUziQlo15ygKFSNLhVGXKgG8xywI6jnjIGB70XD%2BIkLOO014gRROc2Tsq0qkXOMqZKszVfWoCaBG4TPZq4YxBkV52BERcku%2B4SB3w1a4vM5OiLv%2Fnc%2B7teYno%2Bs4bgmbX3GED0Gv8DiQrLmfNxbdO6zLHCJ2sreu54QUrwxpF0WqYqhAqLcVGg7qfwnTKGXpo8NTJrax1yQSbuBPpcm8QQbRaYCW0p6k7rpoXp0wPefvuwHsMADJiNFrYCjEF2XnGCmfg5A8HlCh5JlAvP19PPudu9u9iOkH3mp6a0luQQppmqFyXIlFZV2k0Hop24H3CJa4EvFW1WwGhFrrodO7PnRg72MswtwFmypJSfWLhG6cZhERw0q6MqSk8wK91wnMj0cytHrsh50tgChJfVMJwkhn%2FrxoMMeRCBjXAeVo4K04rdnMmyR9ts4DAK9QVurxoeBH%2FfnXJQNzDaiYRQSQ5Iaw%2FwxkQDHGWMDxzff3OSswFBCAKXW4gmDEGj6VNItkWOduwd7Cl9a0wJMxrH3FE5KXXgbXUTY3g1%2FxXBwYI2qdhQt3zmOrkAqqar1hNn3kvFhjYyGjtOfcsMJ40RuVbaF3oM3DeP2A4viqK%2B9Q14UhONcqlxYm0uYunEyyEgiVI44h%2FEP5fl0Mph0iTD1Q9cdYbssFg9zaYOKgtClnSQIA%2BN5zloqIZXltsHKt3sdJHE4CE%2FNczgnQTJSwanZzaVx9EukYtDiKxjGZqwfOGpQAdLrNTTYksAKQfRHlCi3V3OaeHE88GMo%2BjD%2F6ETV0pDBmKwrRnJWVTM64XgwbnWUS44yz%2F4upKjz%2BK4S5PXI39D1HNv7RyrfDX%2BBOCTHCnfywzEoPGxdVv%2Fc0IsMWssmxyX0nBVo5pLkdlzi9w0WDq0kvNYVxDE96B4MLpm9xUfQoz13VEqggRzyGuaAfIUhHoNhRQj7oOKmbmD8GYBQ0%2BhPWUJp2MGem4YjT1ZEdp9x4rjkx5432qPyplY1LghSQIIkWXcib%2BdI%2FfF2mjf5%2F%2BY4PleduCUGodPPOIdjEjXiUsEC3mJNPhckPSOZc67Q6203malOq4aoH4s%2F9%2Ffv%2F6p3n66u7%2Fpsv%2F347vpmL97vbq7vrhavvJ%2BjhTF0%2BqFm6A5Il8oqXdUVyO%2FQwJvF7e765uWnL%2BDb993dh%2F03eP79%2BnZ3tf88%2BtPV7rb7y4d%2F9nfm9d3X6%2FuP5vH25cOPt8e96bbGFdfb6%2Fj0MfR9rjsgoaBvBGa4aubkYzfuO44eE%2FsWViG6bOfWIhgoErMI5%2Fp%2BgNG%2BRlGpFYCUHNXYjMj2Yo2TNEofPCg5AZpqqwyedKV2Aj67eNIInyCi1O8reoA49bIoitPAiR9YYEooNIN9oYKVInKnlk0J2m15nmOipFsvVJYu1Gb%2BS2F38E3X6O%2FIxJbKFZYkN7danU53d2VYzl5exIH%2FeDnWV3%2BnlAKmFFhkHnYFJbmujoEmc6zHn5k7ikSPQP%2FRAAjT%2BmDmuVYOTVAPC90To5B35rpMp4CWLaNzR1Kjv1ubiXcMWjbq2mflnKC7PU9uq8H0BpKLZ%2Bo%2FBY06qC0sE20uwa8NqYr%2BNgzqYhy39%2Fc34wP1kyCZ6qPewp6la3HqeOnjajHdNCFcevUYB9AsIz%2F%2FBUYeckk%3D&pcode-icookie=15eFEfEm2c%2FqwLNQTOVazwmid%2Fs%2BIjxsyaIz2%2FQJwvg7WGHZkb19lUEBwT5b6ijO26VFyvrfFOjKJBgZd8sqSW5Qb1Q%3D&duid=MTY2OTI5MjY2NzY5OTY4NjcxNg%3D%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=550855325515778&ad-session-id=8899831669292667432&target-id=69358816&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fsynthira.ru&top-ancestor-undetermined=0&pcode-version=685034&pcodever=685034&flash-ver=0&available-width=266&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A266%2C%22h%22%3A0%2C%22width%22%3A266%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A999%2C%22top%22%3A43%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=4644&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNTJ9ChKkpJDkOOqBKFDnDLb91260rWk7zeuNli145bJ-C17P85zaUVpyhq42aqMItmvTxHqrIG1feRS0K-k3tHyv65auTbf-BvpMgN5AWxjNTCOiUdNq1qXd3_OsIyZGY8YMYhTjxQ2kJo5IexM1eYdAq9ZQdyAqO3BkoHWgZjRIUpVWrU87ucXGbGHsTdogRXB7g9JgdDYbA7PNwmy1WXPWAj3kMSJYeoPehE0aEfGL54PaxA0vImPPAeQbs-dApqRUJRpNqkuoe5wiUcad3dobjCaPSJuk4TVhRPb0iVcK-oMUNTFLBP-grCwgX6zoRcl7w_7NsB5glV-OkiZbkaBGZBFJw40If_VI0eQNZzmzG6lirc5gpEozvcEYJ7EuNXDraIz22dWoTeOsazJtCqFTnyppVAllnKg1zk6j1sSpJobQ2UB5gkL6uTbZsS1-WOwn2En_REPiNjg_XuGDwntQkaKzle1Zf_kftrBy2Cks7wj0Y5v5h_csin5IRA3Hz1pI9mUG8ksKe6UC9zA2Iny4wuowFMT9B43_cMInC7yXPz4Nv0leFvMpkhdZ8Uo13P44dYw_AZ8ZsheP4B6OujeYxzsiOrZ-v-N6xA4u5Z3GTByzYd8MMP-Y8P_esmPpwUiOddktJjmKHsSD_skfo03yM4f2cksr9rEjfwhPn6MvjxuFfBl4TuLd7WZ_dP96JLf5y72AJTxhxZUfBUu44lMP4mD5QjwW69PnGpiL6U8Oh9Pu_ziSFBFitUqvDN58GXP4MdDh_7fDS8KHwd9Vvp0f28kcRyL5boC17TeU8Ats8pcG1AmLSCoTkob1ksInNfbiz-J6ROg4nLsRC3eikojUEbzZcX-Ii32_6jfMS2M-d-EM_VojInEE-83hhn0O7_Mc3m87MP6sw_1-Dvdf3RTsU8Vp1XpEBqM-Ie80ukyphNCpycgT6mybyyPBcticJZpU9VAfxmCk0AWg6BJl_JB1icGYGTCs9NnTcsKrUIIth0-4JuaHCO36sIObKGn-533nfbgHiV8c1IpjpNtUW9dkEdwrZQJRdoqvaPZdBb0tQD2cu59cz0q30BCyf1sRTOl_WVEEl_0LkuSwc--L163mbaKn6HjB7V-vvoDgMXtW6g3Ws37FW8zutqH9R1HABOBxRqtLyza0CTWYB_PbxIN9seoB6AsEmm_gVAWeWkehrTjnyrROnelpslip9LBsMCopM81OHWB3yMc_ot0KYjjFB63U-oPS2TZps3ajfdiwH8UCSgNS9tvcXre17zICspcVUjAvPxcizkSP8RCnUsRKRJrDKmWs-sV99HY2K1NHCf5uXKHU9b0sVjArI3Nuu9xmc3SbxWRmKCKGSSbGjspm9kmacz_M48T_-l8mDicZEZn6QNshh8P3Ax427xyBOt2Epm61ljzyy6IymS2VTT5BWza7IC-U2bNU7ihezpxq9Mi9lNzoj5arAfhXmLZ0yK732Jqc9VfIDJXXvCY4Q_8rU_B1ahokGD4qRZkqlRl16ivHGRVFqqOmyFR6fdeoWSjVlM5gpxehiZaaMiFXP9T5wh-vQKVKqKmUukR_DO2KRbivST2r35vVYYl_kiudwbKMufm35m3-sgvl50K8Mbv4chDWhHwbLsrD1l3-_IdSZZpY-V9yTm2HtvlctplY8XdebsG7eznFiYY6RkSZUuoolD2h1qhVKYsy1aU0T2QLk8tNC-DBS7XOP_InCLJAQXCHml6Lcm-4fnHwyZ2QzUU4hbPwZcTH8XPfxYVXXV_kJ6xNTEPLh7JfSI70EXFh41jZenksKS50_7BfslyFE5dhL6VHwl0Wc9OMtLr-L_tzhz8hBIKVJ7xQUnYB5lO9nbpx-hONYIJ-uGEnneuPFU7bMWEX_BrkCAT99J79_XaNrImYvUl15oFzSfML_213u9Yg2x9xl2DsBOA-E8JlAF4EmN8cp9eo9fId3Brg3Jg2MBZvIH4CCJ_blvY6qIh441GiGlMLj2VJHazsSDjClvjH-maFJw3phpW73PaqdKbaF_fJJlZR7GAWv8TXkKLB6OtB6XqxC8_M8c0BeL458CC7jtwTx1TaS9dP4DoZ7uDqFVAXV8kbpxxh-JjD3NaCdNt6BWwqCnpKjy2YGyXi3JZuGDrjBgs8d0qke_uyz2_t80462Go9ygdhpDU0mD_6xfMfJfbhePnGeeW7xjCDfbs8xuEKPO-IxGS00xpQ5MjdXey6CwqrG7Q6QRIUlocC6-mF_eefse1FsYbec3YhP3_sC7lqXr7d5SO9Gfj2kBSIF-hs111Xn0l9jeXiIzjzxUnLjHDIGcGuXK-Pt9Jj1_4tEcWdAOGzIJoxf-MCD_IPs4bOUNbqvdz6Jemr9sS3a0TSGRkFIW3hfyNx8wg7W85qemZe2G33zrrPAyxdtkVOUQgsKJBXiyT8PYI96VBW66ZwUueLJYngubmCJbkNvwjQU7C94oIZUvYrQprUK0h08-4rHIrbcFmboHw-s_0135zQWzp3r-mwb6Upddnj-vSSqHfJW2Xqk7B2n8fl6VPul_iC-d4kAhe-CinzUPp4_bX9CFbpxAskepwpClulp8gVmnE2bZx_uJS5Ep2VuUP89VbW7dXwQIHVMDeulIaP2D0hb8l2t_v7ceww4NZafN-NdirXWOW98pJDJz95_l1LPek00FK1C2-tOvJjbdROWguCzP03zMFAAp3Q5cyIkiWouHjeFz2BNNE70Cf6lZZgyh_U8YMteBiH0FLEsVpjZbgQj8BPBDfjGoBvYBO4klkweuGjhd5pOKvTNaZ3Aor-ZUYJTqJK6TAiZ-h8eT1rcNOPeHRKqxOijlXQBeb3VIIYTUGTo-oPzuj0yPwkjVRMYypXPC5BHuu7m7ve5H-ZF-Nlnd7pc_ApaKy2p9OaPzjTTtnNHGMKOlNeLAqyweTkc2IpaF4OqVqlrVDPZw9dY79AtVaLjPZ8vn6g3ntnSeJU65u9LkUae50-8qxTUDsx2lT1XqGXt_ZdxvWsvT709r_Hb4Wox6pNNB5ntY9wwKaq98NsEHVROxjK4pw00GqaEyP3OQlsOSO_FTfvOZPJYmFd94SJ71YBciV6_bsl2nGhkCFNAFfxdxDpt_cRjuX4HlATpPBK81Vq3K8lsolfrxbSYTgdWvW3qdYpMPJi7Fxl4-19awRWOSem2jQnKifkt-e7gxU3hfPcn9bZoDfMRuev1vOO4a0bOKdlNFkY5rRm3k4LY3Mb6boqNXnqlf2sd6lq89rLiSbS2dhvslCJVDlf5bqvgq2ioE2QoP2x5ivfkg2K5Jtm5qoWk9U2V7XwdlWCjc1DJx_yWm3vmAt43SniPuHmRXqO99Kq61SN7ZLQlP_OpXwDGlnQYu8z9_ycyVOWVKsGI3Ea0M-LAPibcXJZ-dk7hrhoz2QT8ZJtsZu7MZiY6OduVh7vtgFKwCZejYPvlkvX3L0mV0WNPP59kgj0i9SI1-8MfTbpoUSOw1-MjZzqx3W3XN8bnGcEndqXT64SVEAGk63GlzmPnwQaFdXhyXuBME_f-755uUG-1uQLCQB-wcWZAc_rLVaqv_nWv62DIE20f64R55_cVjXHMFySLsTuaXHPTNbz-8sxbbzVSgVXnnyRZDnXFkQIBKO6f7ExOr_GOOJEZVoEisyQ0_MWcWJWdMyzRjEyMvaxvK218zTROQWa-4KHjFyV6LIOFlAgAAKao1nXG1tzkxnV3JiBtxvD6RveSvwIx91KT0dHt0auy5VYY-ASrbH0pVFz7spdRffMBwp0Lsv09f3xTbaxRzmtpaTUnBFYWVKLfUDmM0L8XUGo1obVLYXUgyhH4hARtI_BfYMPL7Ie54fc9kPRIl2jOQPyPzGnN-VjdM9R8fbE_XVB0hcHjF2O0ZGf20eEZ3TnWPKBef_N5788WSTEoZ7xGv_xBvWME4VwyZeRpcxxmqHdxbQO4gT2KhvXI9t6bjXZ6pF5sVI0OA1Gb6A8JVAPoQVGA0SD2WA9AJAb1AcE52EASlfV2AVl1quoLlAmlxfNbHFFPCpIMtJVvj6T5hjz--o5nrKjcHSGsS5vIYiIIoRjN8U_9Jnn3GScdMZt9RDKjkVy0S_BqtiRjcYuGi2mro9hMNlq4uLJWABlEX0lo8FN0otCn0vYWQNJuv-FyCdEVrTO0RwvhmruuPcRYjrUdKgbiN_JUM-8uYChNtgN-ncttId4UB4g5yzcd5YfIJDUcQZ42mdHoAyDYq-qKMMajTz-t9hc3mIxWczzFt7Q-k8_cd5SFcAOTXZ1fASIGFWDEG_RXxdIgCtZjiaagiTaaI2kj8rsht4vYPxlySHZ99USk6zGo3xrhKg-xaslJt5ysVoHY_YRjRbnKqItEkGouSUpCsuhXmpZFf_J7NG5Gqg1v5vN_Tv4Mi8I_wo4AlXK33A0LxGMMhb-6fs0OadbuS6z6zNNgiS3IFbrkKLdukvv0rpmU26d1s2BnaMwagaYAQ2x1bIL9cOanI7joHJblQkAJ3h-W3WK4PyZRy1NoISxwDw_dLAVjaZjMoV-A29I4h7gFhd12LDmyVYCKwRy-RUnyQApP3i21c4BZnuR9gVKB0D-&uniformat=true&callback=Ya%5B8711532677008%5D HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://synthira.ru
Connection: keep-alive
Referer: https://synthira.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://synthira.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1669292667890341-9482073846254077015-sas3-0979-e6b-sas-l7-balancer-8080-BAL-7079
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Thu, 24 Nov 2022 12:24:28 GMT
date: Thu, 24 Nov 2022 12:24:28 GMT
set-cookie: yabs-vdrf=A0; domain=yandex.ru/an; path=/; expires=Thu, 01-Dec-2022 12:24:27 GMT
i=mjnDE+cmLXIBgchzp+8CErB/Fi6FXD6M+dvAzi4Ii/jLfpsACqpqZnandLrpFDsA6MBc4B4tAoUlnB01MePp/zs+nfM=; Expires=Sat, 23-Nov-2024 12:24:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:27 GMT; SameSite=None; Secure
is_gdpr_b=CIy8DhCflwEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sat, 23 Nov 2024 12:24:27 GMT; SameSite=None; Secure
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
ssr: true
expires: Thu, 24 Nov 2022 12:24:28 GMT
X-Firefox-Spdy: h2