zerossl.ocsp.sectigo.com/
172.64.149.23 727 B URL zerossl.ocsp.sectigo.com/
IP 172.64.149.23:0
Hash ed80506cd0070b4d3c199d605d528d11
ab668e54986e8abc2703b9eb2bd55a40ff183de5
3e6df0dc2e2ecf4eaa9236e20dba7783be62e5e98001450dec9dd33dd4d60615
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:36 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Fri, 01 Dec 2023 23:04:49 GMT
Expires: Fri, 08 Dec 2023 23:04:48 GMT
Etag: "ab668e54986e8abc2703b9eb2bd55a40ff183de5"
Cache-Control: max-age=329171,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 830933327f7ab527-OSL
leaderts.kz/cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css
194.4.59.205 21 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (65536), with no line terminators
Hash 287421f7601da9334bdaf4e384613a2f
06fb029a3a9ec91626e97418347e007033519158
3c0e67691a48174924b808546dff8b50d8f4a33a596883ed3c44d0bf0aaaa706
GET /cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: text/css
content-length: 20975
last-modified: Wed, 25 Oct 2023 03:07:00 GMT
x-rgw-object-type: Normal
etag: "6f5807483351fc6f35b6e6af32703b35"
x-amz-meta-s3cmd-attrs: atime:1698203200/ctime:1698203188/gid:0/gname:root/md5:6f5807483351fc6f35b6e6af32703b35/mode:33188/mtime:1698203158/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000007bbc44dc9baac60c-00653a4acd-cf145cb-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: peloton.kz/cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.149.23 727 B URL zerossl.ocsp.sectigo.com/
IP 172.64.149.23:0
Hash 4ee07fa1b16cabb571764f244b1cff65
ebc4dc59c82dc21c597ac57435a6c0ee293e1db5
234d8181d11961e2764af65031adcfa3ce93b42cc058bc0d7cc227bc02ef788c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 12:43:42 GMT
Expires: Sat, 09 Dec 2023 12:43:41 GMT
Etag: "ebc4dc59c82dc21c597ac57435a6c0ee293e1db5"
Cache-Control: max-age=378781,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333d7a88b527-OSL
www.googletagmanager.com/gtag/js?id=G-8SQ5YEJG36
142.250.74.168200 OK 90 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-8SQ5YEJG36
IP 142.250.74.168:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash f9ffed96f457b6a24a84907118cb9ae6
8c042603fcb776445d5ff8984ed780dbd0ab3b17
fe6dffcdd468b134306d42ff5b18000bab14ad079f39f1a8f2673316aff21024
GET /gtag/js?id=G-8SQ5YEJG36 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 03:28:38 GMT
expires: Tue, 05 Dec 2023 03:28:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90459
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.38.233 727 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash b2c4d0e55942bda1ea6c698fdd9bcd9b
d61956b2a3118310a892b81c1e18bee816429a3a
483f153fa1143d0dfce73f699644373ac6695686cacc114a89756df83f5cbc2a
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 03 Dec 2023 18:24:27 GMT
Expires: Sun, 10 Dec 2023 18:24:26 GMT
Etag: "d61956b2a3118310a892b81c1e18bee816429a3a"
Cache-Control: max-age=485485,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333dac1a56a9-OSL
leaderts.kz/cloud-cgi/static/uaprom-static/css/ckeditor-hcdb7531b51f6c74515d474e34f1fcbc79.css
194.4.59.205 7.2 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/css/ckeditor-hcdb7531b51f6c74515d474e34f1fcbc79.css
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (65536), with no line terminators
Hash db7531b51f6c74515d474e34f1fcbc79
32253dea1547962db2a6f06a6b8181fd722919ce
093843eebd5aea5e6f40badf44d99b2bb4873f975485f4cd0537c0b32a384db7
GET /cloud-cgi/static/uaprom-static/css/ckeditor-hcdb7531b51f6c74515d474e34f1fcbc79.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: text/css
content-length: 7235
last-modified: Tue, 08 Aug 2023 11:24:52 GMT
x-rgw-object-type: Normal
etag: "1577bf6c632ae40dec8ea72afc2c5ceb"
x-amz-meta-s3cmd-attrs: atime:1691493886/ctime:1691493874/gid:0/gname:root/md5:1577bf6c632ae40dec8ea72afc2c5ceb/mode:33188/mtime:1691493837/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000005c93750037807933-0064d631a9-61dcd30-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: seeozone.kz/cloud-cgi/static/uaprom-static/css/ckeditor-hcdb7531b51f6c74515d474e34f1fcbc79.css
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_853c95d210a23c10a02f.css
194.4.59.205 3.7 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_853c95d210a23c10a02f.css
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (15335), with no line terminators
Hash 000cfd73e8838b810640ae5a1ae94e09
a0b654f1ce8198e12278eafb4576b9a5da761312
801ec770298ccbd9e9cb13757ddf6c1cac3397c86d1f7b12d6bd649d433adbd8
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_853c95d210a23c10a02f.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: text/css
content-length: 3663
last-modified: Mon, 16 Oct 2023 03:05:39 GMT
x-rgw-object-type: Normal
etag: "9a16cec7f2177f0992ec76a0aa166e27"
x-amz-meta-s3cmd-attrs: atime:1697425502/ctime:1697425505/gid:0/gname:root/md5:9a16cec7f2177f0992ec76a0aa166e27/mode:33188/mtime:1697425502/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000580fd06e8c3c2c5d-00652e76bd-ad6ac26-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: forzatuning.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_853c95d210a23c10a02f.css
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
dynamic-assets.coinbase.com/bf90ea51256eda2fc16787b0deeceaaa18bf6acc79ef3228593a93be4297621c858c5abadc44e450a188d246b3fdb5a44ec3074ded8c51e4ef559c041926c526/asset_icons/f14ccfd317cb231b161d4ebe1f286b022a7d0d42ea56eee2c7409c39a5e990bb.png
172.64.152.241 4.0 kB URL dynamic-assets.coinbase.com/bf90ea51256eda2fc16787b0deeceaaa18bf6acc79ef3228593a93be4297621c858c5abadc44e450a188d246b3fdb5a44ec3074ded8c51e4ef559c041926c526/asset_icons/f14ccfd317cb231b161d4ebe1f286b022a7d0d42ea56eee2c7409c39a5e990bb.png
IP 172.64.152.241:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ac76bab7a95e237cfbffd634c1c77f2
ddf3a8d08c1638fb09777e93588f55ae557c845d
adbae1103696fb091565b0ee2a30ad03a0928f4cfb4564e58610c6538991b28f
GET /bf90ea51256eda2fc16787b0deeceaaa18bf6acc79ef3228593a93be4297621c858c5abadc44e450a188d246b3fdb5a44ec3074ded8c51e4ef559c041926c526/asset_icons/f14ccfd317cb231b161d4ebe1f286b022a7d0d42ea56eee2c7409c39a5e990bb.png HTTP/1.1
Host: dynamic-assets.coinbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/png
content-length: 3969
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "4ac76bab7a95e237cfbffd634c1c77f2"
last-modified: Thu, 28 Feb 2019 18:38:13 GMT
via: 1.1 54a56da0fe0bae919389c7d572d4720e.cloudfront.net (CloudFront)
x-amz-cf-id: yU2lpLiwETXbGT1hYEL_XBWxpuxnZEu_ViwqufE7OJPJP3dcDZ6FUg==
x-amz-cf-pop: JFK50-P6
x-cache: Miss from cloudfront
x-amz-version-id: null
cf-cache-status: HIT
expires: Tue, 05 Dec 2023 05:28:38 GMT
cache-control: public, max-age=7200
accept-ranges: bytes
set-cookie: __cf_bm=IshKhB1NFib0zif3I_f5wUMhBo.Qr75oogEIIyh71gI-1701746918-0-AY+2vZQQrd1ZRUyifu3ho2bJmzgLa4FUDJOkYW97q9YkNmz+2Xf2oUEyv9azkPK/JnX/H7mvG1A5Xs1MBdLFoF0=; path=/; expires=Tue, 05-Dec-23 03:58:38 GMT; domain=.coinbase.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8309333d69bab4f1-OSL
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_runtime_b25219d69df75c06c16e.js
194.4.59.205 1.5 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_runtime_b25219d69df75c06c16e.js
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (3922), with no line terminators
Hash 8f323ce7337276b9d20312bc31d4a834
9f2aa683f3adffd4331c0d4b8818463440f0d208
5a277ec01252356bec3a2ec72b1dbb524a08cf1a8b6014cc3207d226d7c2a62d
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_runtime_b25219d69df75c06c16e.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: application/javascript
content-length: 1520
last-modified: Mon, 20 Nov 2023 03:06:05 GMT
x-rgw-object-type: Normal
etag: "4dd357fe625cd88c91934d0aa876b870"
x-amz-meta-s3cmd-attrs: atime:1700449533/ctime:1700449529/gid:0/gname:root/md5:4dd357fe625cd88c91934d0aa876b870/mode:33188/mtime:1700449522/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000000cfcd43721adcbde-00655cb14f-cf3ffee-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: forzatuning.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_runtime_b25219d69df75c06c16e.js
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
images.satu.kz/16803738_w100_h100_too-lider-ts-servis.jpg
193.242.216.19 2.4 kB URL images.satu.kz/16803738_w100_h100_too-lider-ts-servis.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x65, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2144b1c665ad35a71ff60adab244aeee
71910aeb35ee42a028ebb176d75a44907c0b34b2
ccfacdb125743ec2201d8ae248833b4fc66129fce32b02bafb61099adeaab927
GET /16803738_w100_h100_too-lider-ts-servis.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/webp
content-length: 2380
x-image-source: Resized original: local
x-image-meta: 8cdb64b3fa5af9fb04b21794f46b00bdfacdeb39_1
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 53
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-4
x-request-id: 4ed2af50-2991-4590-8f04-46e802bf3442
X-Firefox-Spdy: h2
my.satu.kz/cloud-cgi/static/clerk/v4.3.2/bare.js
193.242.216.17 4.1 kB URL my.satu.kz/cloud-cgi/static/clerk/v4.3.2/bare.js
IP 193.242.216.17:0
File type ASCII text, with very long lines (10819)
Hash c8ffdf928aee774e8b32aa5f2869f2ea
7f6eaf25ffbf2b081018d7ac1852cc11e558553e
1806f99286d0a94ada94aa3142df968783b5d2de749c607b797f14eb2d6f8e81
GET /cloud-cgi/static/clerk/v4.3.2/bare.js HTTP/1.1
Host: my.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: application/javascript
content-length: 4068
last-modified: Mon, 28 Aug 2023 14:22:00 GMT
x-rgw-object-type: Normal
etag: "81ac2060d1004e9732fa8582e8d2cf6e"
x-amz-meta-s3cmd-attrs: atime:1693232159/ctime:1693231916/gid:1000/gname:vlakas/md5:81ac2060d1004e9732fa8582e8d2cf6e/mode:33204/mtime:1667486421/uid:1000/uname:vlakas
content-encoding: gzip
x-amz-storage-class: STANDARD
x-amz-request-id: tx0000053e163b0152b3d82-00656e98e6-cf145cb-ams-1
x-cache-status: MISS
x-cache-key: my.satu.kz/cloud-cgi/static/clerk/v4.3.2/bare.js
x-servant: k8s-prom-nginx-1
x-fallback: true
x-uri2: clerk.s3.evo-nl.dev/v4.3.2bare.js
accept-ranges: bytes
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.38.233 727 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash c0c29bed660a854c71f3e5c757e60f02
857e87caf224dcdda3d7339ae38f4aa7e5eaa316
ca9b297129929b514d7463c4ed38d096cad295165ac207f35f1c0d99a73406cc
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 04:12:21 GMT
Expires: Sat, 09 Dec 2023 04:12:20 GMT
Etag: "857e87caf224dcdda3d7339ae38f4aa7e5eaa316"
Cache-Control: max-age=347785,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333ebc7e56a9-OSL
zerossl.ocsp.sectigo.com/
104.18.38.233 727 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash c0c29bed660a854c71f3e5c757e60f02
857e87caf224dcdda3d7339ae38f4aa7e5eaa316
ca9b297129929b514d7463c4ed38d096cad295165ac207f35f1c0d99a73406cc
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 04:12:21 GMT
Expires: Sat, 09 Dec 2023 04:12:20 GMT
Etag: "857e87caf224dcdda3d7339ae38f4aa7e5eaa316"
Cache-Control: max-age=348933,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333ebfc956a2-OSL
zerossl.ocsp.sectigo.com/
104.18.38.233 727 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash c0c29bed660a854c71f3e5c757e60f02
857e87caf224dcdda3d7339ae38f4aa7e5eaa316
ca9b297129929b514d7463c4ed38d096cad295165ac207f35f1c0d99a73406cc
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 04:12:21 GMT
Expires: Sat, 09 Dec 2023 04:12:20 GMT
Etag: "857e87caf224dcdda3d7339ae38f4aa7e5eaa316"
Cache-Control: max-age=347621,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333eba64b518-OSL
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_e713d5d2ddedb5f95583.js
194.4.59.205 154 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_e713d5d2ddedb5f95583.js
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type Unicode text, UTF-8 text, with very long lines (65435)
Size 154 kB (154003 bytes)
Hash 32f72505c84c708bcd9ab037a4dcb3dc
47d73a73733501d041c03caba2a4a259619c7658
b185f58d595b56c6debf8e404c61e4f3e5f1d81ded9951ebeca5ed0d29f2498f
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_e713d5d2ddedb5f95583.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: application/javascript
content-length: 154003
last-modified: Wed, 25 Oct 2023 03:07:01 GMT
x-rgw-object-type: Normal
etag: "2ba89fc787326fe13531d012ffbfc082"
x-amz-meta-s3cmd-attrs: atime:1698203186/ctime:1698203193/gid:0/gname:root/md5:2ba89fc787326fe13531d012ffbfc082/mode:33188/mtime:1698203184/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000003a2be742c808e155-00653a4acd-cf3ffee-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: seeozone.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_e713d5d2ddedb5f95583.js
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
194.4.59.205200 OK 58 kB URL User Request GET HTTP/2 IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 4a77fc80e2827cd7f3969df88dd995d4
247406805422b2a1d9b183c17d04dfc557e9edef
ee63de8cef9589a8cb398c2ca7bca295df9ddcf2517b6276eb6ef807506a0b52
GET / HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
pragma: no-cache
set-cookie: cid=299494059759793769275653021054901114372; Max-Age=2592000; Path=/; expires=Thu, 04-Jan-2024 03:28:36 GMT
user_tracker=64ed5d52b34251483ce09ea58fc155f823c652c0|91.90.42.154|2023-12-05; Domain=.satu.kz; Path=/
csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; Domain=leaderts.kz; Max-Age=31449600; Path=/; expires=Tue, 03-Dec-2024 03:28:36 GMT; secure; SameSite=None
auth=fa146fb02a79f2fc84a013ad4654e928aaad5319; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:37 GMT; secure; HttpOnly
auth=fa146fb02a79f2fc84a013ad4654e928aaad5319; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:37 GMT; secure; HttpOnly; SameSite=None
evoauth=w917a94d67b664978abd10422c472591e; Domain=leaderts.kz; HttpOnly; Max-Age=31536000; Path=/; SameSite=None; Secure
referrer-policy: no-referrer-when-downgrade
link: </cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css>; rel=preload; as=style; nopush, </cloud-cgi/static/uaprom-static/css/ckeditor-hcdb7531b51f6c74515d474e34f1fcbc79.css>; rel=preload; as=style; nopush, </cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_853c95d210a23c10a02f.css>; rel=preload; as=style; nopush, </cloud-cgi/static/kazprom-uc/production/design_template/635/css/keppel-be42d5b1878c129bb0fb625e8015595e.css>; rel=preload; as=style; nopush, </cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_runtime_b25219d69df75c06c16e.js>; rel=preload; as=script; nopush, </cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_e713d5d2ddedb5f95583.js>; rel=preload; as=script; nopush, </cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_vendor_old_d9ffbe224c4768efe523.js>; rel=preload; as=script; nopush, </cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_2b7da383365de7589081.js>; rel=preload; as=script; nopush
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: 32e4d3a6-bc90-45a7-a126-888a8f774c36
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.149.23 727 B URL zerossl.ocsp.sectigo.com/
IP 172.64.149.23:0
Hash c0c29bed660a854c71f3e5c757e60f02
857e87caf224dcdda3d7339ae38f4aa7e5eaa316
ca9b297129929b514d7463c4ed38d096cad295165ac207f35f1c0d99a73406cc
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:38 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 04:12:21 GMT
Expires: Sat, 09 Dec 2023 04:12:20 GMT
Etag: "857e87caf224dcdda3d7339ae38f4aa7e5eaa316"
Cache-Control: max-age=347621,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 8309333e8af7b527-OSL
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_2b7da383365de7589081.js
194.4.59.205200 OK 44 kB URL GET HTTP/2 leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_2b7da383365de7589081.js
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (64377), with no line terminators
Hash 51cc2457464c00507d5e4394f7fc4eb3
50ed95cad2f52cfc9b511d5beeb49b399d61ab28
f6424019baa6710fb06ff0981b9718d05af49e094cf5d37416457e5f8e8dcdac
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_2b7da383365de7589081.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: application/javascript
content-length: 43692
last-modified: Wed, 29 Nov 2023 03:05:23 GMT
x-rgw-object-type: Normal
etag: "0511121eb66e6695efa3215b0e0a0529"
x-amz-meta-s3cmd-attrs: atime:1701227074/ctime:1701227081/gid:0/gname:root/md5:0511121eb66e6695efa3215b0e0a0529/mode:33188/mtime:1701227073/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000ff420c75957bd413-0065686944-cf145cb-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: seeozone.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/wp_companysite_2b7da383365de7589081.js
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/adv_teasers.js?rev=c241fc553e029d87f1f210d7add05886def1ebc1
194.4.59.205 25 B URL leaderts.kz/cloud-cgi/static/uaprom-static/js/adv_teasers.js?rev=c241fc553e029d87f1f210d7add05886def1ebc1
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
Hash bedeef1d063dc282626b38883b4b19df
879203a75c3d83bb130fbbaf01b6ba713602156c
def3584e39f412e77b3a70f3f1182afa6bc23c0be13afd0b1d1493088e015e97
GET /cloud-cgi/static/uaprom-static/js/adv_teasers.js?rev=c241fc553e029d87f1f210d7add05886def1ebc1 HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: application/javascript
content-length: 25
last-modified: Tue, 08 Aug 2023 11:25:11 GMT
x-rgw-object-type: Normal
etag: "b909af3688aaff574b30f3e9fb48c8b1"
x-amz-meta-s3cmd-attrs: atime:1691493886/ctime:1691493882/gid:0/gname:root/md5:b909af3688aaff574b30f3e9fb48c8b1/mode:33188/mtime:1691493837/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000008fbf54ecf5c6327f-0064d512f2-702a907-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: satu.kz/cloud-cgi/static/uaprom-static/js/adv_teasers.js
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/evo-power/solve.js
194.4.59.205 10 kB URL leaderts.kz/cloud-cgi/static/evo-power/solve.js
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (23303)
Hash eaaf1d39a044b8cc0789eae9f04d4d82
7922eed29d241afdaef6793a7e9e23a211a2a6d1
8411537a74fba3094edef647e86059f5138a4e734450c9a43e49214f926de849
GET /cloud-cgi/static/evo-power/solve.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:37 GMT
content-type: application/javascript
content-length: 10090
last-modified: Fri, 04 Aug 2023 14:11:12 GMT
x-rgw-object-type: Normal
etag: "511645c176a38f2159bec30482def9eb"
x-amz-meta-s3cmd-attrs: atime:1691158272/ctime:1691158272/gid:0/gname:root/md5:511645c176a38f2159bec30482def9eb/mode:33188/mtime:1691158272/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000002c76856400856bcf-0064d08ff3-702a907-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: satu.kz/cloud-cgi/static/evo-power/solve.js
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
images.ua.prom.st/1715053540_w640_h2048_icons8_communicate_50.png?fresh=1&PIMAGE_ID=1715053540
193.34.169.10 768 B URL images.ua.prom.st/1715053540_w640_h2048_icons8_communicate_50.png?fresh=1&PIMAGE_ID=1715053540
IP 193.34.169.10:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bbf80211f7ac104d135a902ac9edfb5a
51858c650eae0d181bab38637e9ee29aecabe8f1
db363cb952336716efdad6951333785307bece1afa96720ea2c6fdcb2f8ff496
GET /1715053540_w640_h2048_icons8_communicate_50.png?fresh=1&PIMAGE_ID=1715053540 HTTP/1.1
Host: images.ua.prom.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/webp
content-length: 768
x-image-source: True original: local
x-image-meta: 35b852c42d3a053f976109ab392c12acf13eb6a7_11
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 16
x-cache-status: MISS
x-servant: sidewinder
x-request-id: a1fbfaa2-7d25-4e71-8999-0cb113104506
X-Firefox-Spdy: h2
images.ua.prom.st/1715053907_w640_h2048_icons8_wallet_50.png?fresh=1&PIMAGE_ID=1715053907
193.34.169.10 448 B URL images.ua.prom.st/1715053907_w640_h2048_icons8_wallet_50.png?fresh=1&PIMAGE_ID=1715053907
IP 193.34.169.10:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3bdbac2c0fe467bda340b2225c518060
1e7d87e67c84bfd109ddcf0841274efce3af0733
293b256db4bfe642a547fa58fb7aab23544d361b31fbdedb3820522e0592d902
GET /1715053907_w640_h2048_icons8_wallet_50.png?fresh=1&PIMAGE_ID=1715053907 HTTP/1.1
Host: images.ua.prom.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/webp
content-length: 448
x-image-source: True original: local
x-image-meta: 3bbc4de4cb2755bf59b156ef2df930a5702a2069_11
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 26
x-cache-status: MISS
x-servant: ferdelance
x-request-id: d894ff04-8d49-4a02-8650-c471198f9737
X-Firefox-Spdy: h2
images.ua.prom.st/1715054003_w640_h2048_icons8_add_list_64.png?fresh=1&PIMAGE_ID=1715054003
193.34.169.10200 OK 916 B URL GET HTTP/2 images.ua.prom.st/1715054003_w640_h2048_icons8_add_list_64.png?fresh=1&PIMAGE_ID=1715054003
IP 193.34.169.10:443
Certificate IssuerZeroSSL
Subjectimages.ua.prom.st
FingerprintA0:28:AB:23:BD:D5:EE:84:B4:01:D8:72:2D:B6:9C:53:A7:7F:0C:AB
ValidityWed, 27 Sep 2023 00:00:00 GMT - Tue, 26 Dec 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 83617d84a77a93e0ee201dde50a95d43
e560c5965ff1be965491d41991eb48937793a11c
eab443df35d763c1a464a702e33ce559af9c74ba1897286b5f9b22d32b870080
GET /1715054003_w640_h2048_icons8_add_list_64.png?fresh=1&PIMAGE_ID=1715054003 HTTP/1.1
Host: images.ua.prom.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/webp
content-length: 916
x-image-source: True original: local
x-image-meta: 68e193fd3d5f24b47a6f6d8edd8773e258dfa1eb_11
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 21
x-cache-status: MISS
x-servant: nginx-cache-04
x-request-id: 5225be74-7144-481f-a988-31f710885a63
X-Firefox-Spdy: h2
images.ua.prom.st/1715053794_w640_h2048_icons8_available_updates_50.png?fresh=1&PIMAGE_ID=1715053794
193.34.169.10200 OK 654 B URL GET HTTP/2 images.ua.prom.st/1715053794_w640_h2048_icons8_available_updates_50.png?fresh=1&PIMAGE_ID=1715053794
IP 193.34.169.10:443
Certificate IssuerZeroSSL
Subjectimages.ua.prom.st
FingerprintA0:28:AB:23:BD:D5:EE:84:B4:01:D8:72:2D:B6:9C:53:A7:7F:0C:AB
ValidityWed, 27 Sep 2023 00:00:00 GMT - Tue, 26 Dec 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash a0d9c7ff33634033aeef9d2c38df61fd
e9c7388290f8023c50088a1f012ff04e67fe7419
c0a7048976118992e29b936402a6ccfc7e3b756ab34f0980195185d7978ec8cb
GET /1715053794_w640_h2048_icons8_available_updates_50.png?fresh=1&PIMAGE_ID=1715053794 HTTP/1.1
Host: images.ua.prom.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/webp
content-length: 654
x-image-source: True original: local
x-image-meta: a81a2069539d2054cf9aa6fdac14b804d3c85bf6_11
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 57
x-cache-status: MISS
x-servant: nginx-cache-04
x-request-id: 52cca3f7-30dd-4ec1-b825-e398d76330e1
X-Firefox-Spdy: h2
refrez.com/wp-content/uploads/2017/11/bayar.png
104.21.1.64 3.1 kB URL refrez.com/wp-content/uploads/2017/11/bayar.png
IP 104.21.1.64:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash cf4510daddeb1795e0636ee0a9d9397b
2544e16f8e6b04bd65e0621d315839581a2be524
88c1ba49cab5f2df6231a175e9efbb6a6a9edb6f3fdc97f96d3bcd98d37b2e6c
GET /wp-content/uploads/2017/11/bayar.png HTTP/1.1
Host: refrez.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/png
content-length: 3125
cache-control: public, max-age=43200
expires: Tue, 05 Dec 2023 15:28:38 GMT
etag: "c35-5a0a6e11-9e1630;;;"
last-modified: Tue, 14 Nov 2017 04:16:17 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=muAYqpld5xfAzBMvyaSWTFUJHltVYKhj%2BQmliILrv0BbaN5ZfjC87Ao5bGUtOwez44o0ACS%2FUqLN0gWlAr0D8iHrlrmjaYvw40a5FmBski%2Fdv07rFD%2FKe9c7C4j%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8309333d4e1eb509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.shareicon.net/data/128x128/2017/01/06/868302_business_512x512.png
104.21.7.164 5.4 kB URL www.shareicon.net/data/128x128/2017/01/06/868302_business_512x512.png
IP 104.21.7.164:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 86475113830ce6c4b3a1dd986e55b94b
d73e04e3a98d12ed73b5ccfe22769f7d1d5cb816
c85fa01a8767ddde6dac82cb166de4d3b824b8dbfe27cb16bbec71eb43868a87
GET /data/128x128/2017/01/06/868302_business_512x512.png HTTP/1.1
Host: www.shareicon.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/png
content-length: 5415
cache-control: public, max-age=14400
expires: Sun, 29 Mar 2050 00:00:00 GMT
last-modified: Tue, 05 Apr 2022 17:58:37 GMT
etag: "64f371c61649d81:0"
x-powered-by: ASP.NET, ARR/3.0, ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5AGbK4wLWaoiCGbMzfXHjCi2BVrCz4MZAytrmK9Xbyc6SQIHXfmlPMjPNZpn9fIwgiEITe8uOVcIWwUL8SvgmGuAIAeII66HppQFUvDGsH%2FgJKvW0wS0LpylD8J3wTKwMt3tDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8309333d4b1356cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img.icons8.com/ios/2x/circled-chevron-right.png
185.76.9.26200 OK 2.0 kB URL GET HTTP/2 img.icons8.com/ios/2x/circled-chevron-right.png
IP 185.76.9.26:443
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1004834818.rsc.cdn77.org
FingerprintCC:93:2A:9F:0B:75:A6:C2:3A:C3:3C:C3:2B:B7:F0:F6:32:E8:A6:90
ValiditySun, 26 Nov 2023 10:59:10 GMT - Sat, 24 Feb 2024 10:59:09 GMT
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e4c20d19d2693ed3b7e1d180faf6a6c
2b49c41278d38b183e35cd7bb1bb540509d73821
ed5e79638ac6deb4b9499cba02a6ad52f55599933a24c73627d853f32f43b97e
GET /ios/2x/circled-chevron-right.png HTTP/1.1
Host: img.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: image/png
content-length: 1958
vary: Origin
access-control-allow-origin: *
icon-id: 26138
icon-size: 100
icon-format: png
last-modified: Thu, 09 Mar 2023 09:33:56
version: 0.0.29
from-mongo-cache: false
from-redis-cache: false
not-found-platform: false
cache-control: public, max-age=302400
strict-transport-security: max-age=15724800; includeSubDomains
x-77-nzt: EwgBuUwJFAFBCAG5TAoJAUEIAdRmOJwBQQ
x-77-nzt-ray: af5856301b8ea432e6986e656216d30d
x-77-cache: MISS
server: CDN77-Turbo
x-cache-lb: MISS, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
my.satu.kz/cloud-cgi/static/clerk/v4.3.2/iframe.html
193.242.216.17 1.4 kB URL my.satu.kz/cloud-cgi/static/clerk/v4.3.2/iframe.html
IP 193.242.216.17:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2615)
Hash 2e29d3ff107a2c57ee614c8753df4470
ae956f68ba2bc2ce70dbda1f27cb8cec538179a2
f66f3d6a08c5006bc536cb74578f916288c28db97b853cf07447c886f9178118
GET /cloud-cgi/static/clerk/v4.3.2/iframe.html HTTP/1.1
Host: my.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: text/html
content-length: 1365
last-modified: Mon, 28 Aug 2023 14:22:01 GMT
x-rgw-object-type: Normal
etag: "9424b284774d6234c3e3ba9502409303"
x-amz-meta-s3cmd-attrs: atime:1693232211/ctime:1693231916/gid:1000/gname:vlakas/md5:9424b284774d6234c3e3ba9502409303/mode:33204/mtime:1667486422/uid:1000/uname:vlakas
content-encoding: gzip
x-amz-storage-class: STANDARD
x-amz-request-id: tx0000085d805c83b6958a4-00656e98e6-cf145cb-ams-1
x-cache-status: MISS
x-cache-key: my.satu.kz/cloud-cgi/static/clerk/v4.3.2/iframe.html
x-servant: k8s-prom-nginx-1
x-fallback: true
x-uri2: clerk.s3.evo-nl.dev/v4.3.2iframe.html
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:13:56 GMT
expires: Thu, 28 Nov 2024 21:13:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 454482
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227 9.6 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 12:58:10 GMT
expires: Thu, 28 Nov 2024 12:58:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 484228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15100, version 1.0\012- data
Hash 1032e86f9b5d143e397b501ab6bd31cc
46163f649262f5474f8c29814e711cdc91dbf8b2
b52de70853ed4bac82f0c4cc5d6c7da8d588de61d97e8c30b99e40eefcde5a44
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:16 GMT
expires: Fri, 29 Nov 2024 10:04:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:45:20 GMT
content-type: font/woff2
age: 408262
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw9aXpsog.woff2
216.58.207.227 8.8 kB URL fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw9aXpsog.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8792, version 1.0\012- data
Hash 103c9cdfca76e2b465970107122c77a7
686ba06adc7098b8a104039e7d5dfefd7fd4b5b9
f10b40205f91224d0ff66962467f424f7b518a6461e07dca8d847e8e4571360a
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw9aXpsog.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:47:53 GMT
expires: Thu, 28 Nov 2024 17:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:43:50 GMT
content-type: font/woff2
age: 466845
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
216.58.207.227 17 kB URL fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:27 GMT
expires: Fri, 29 Nov 2024 04:48:27 GMT
cache-control: public, max-age=31536000
age: 427211
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2
216.58.207.227 10 kB URL fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10292, version 1.0\012- data
Hash 5bdb5a70335e7a4462e02f8c45decb57
1c98607dae007f36fcc31ccc15df771fb925f543
a6933e678530b263486fa7b185a449cac947e1496ef61d496642032f339e9e43
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:18 GMT
expires: Thu, 28 Nov 2024 21:37:18 GMT
cache-control: public, max-age=31536000
age: 453080
last-modified: Wed, 11 May 2022 19:24:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 07:29:35 GMT
expires: Fri, 29 Nov 2024 07:29:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 417543
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
216.58.207.227200 OK 9.8 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash 7b08b9e11fc6b8a8a1398b357e874144
4b5fb5790fae1c96655aaa7a426b697f5ab986d0
3728fbdd191d75bad5b83a838dfe2fc15f84c2aaa36ffa573321275847db31a9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 19:52:49 GMT
expires: Thu, 28 Nov 2024 19:52:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
age: 459349
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
216.58.207.227 9.6 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:55 GMT
expires: Fri, 29 Nov 2024 05:00:55 GMT
cache-control: public, max-age=31536000
age: 426463
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,400i,500,700,700i&subset=cyrillic
142.250.74.106 17 kB URL fonts.googleapis.com/css?family=Roboto:400,400i,500,700,700i&subset=cyrillic
IP 142.250.74.106:0
File type gzip compressed data, max compression\012- data
Hash 69c3305a7de3bd53e2994b425d642bbc
dc93c7d7b1f2736e23e460432de6041e2eeeb656
c22e52de3383e86dab1ce8d401a489d7e6650d9f3e7a9b06e9835e7a422e3e3b
GET /css?family=Roboto:400,400i,500,700,700i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 03:28:38 GMT
date: Tue, 05 Dec 2023 03:28:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
142.250.74.35200 OK 4.0 kB URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (20367), with no line terminators
Hash 72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 18:39:49 GMT
expires: Tue, 03 Dec 2024 18:39:49 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 31730
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
my.satu.kz/remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1
193.242.216.17 0 B URL my.satu.kz/remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1
IP 193.242.216.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1 HTTP/1.1
Host: my.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-requested-with
Referer: https://leaderts.kz/
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
access-control-allow-headers: X-CSRFToken,X-PromUserID,Content-Type,X-Requested-With,X-Image-Hashes,X-Debug-Key,X-Language
access-control-allow-origin: https://leaderts.kz
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS,DELETE
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: 0ded0921-3f50-4423-a3d1-a84b03773d6f
set-cookie: evoauth=w47e5a9e54c954c85895ecc57a7c5b6a2; Domain=.satu.kz; HttpOnly; Max-Age=31536000; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
my.satu.kz/remote/auth/info
193.242.216.17 12 B URL my.satu.kz/remote/auth/info
IP 193.242.216.17:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 544eea35ac25c905512c4e689760bb0c
8bb36ae597cf32fb4a1e745fb0800bae410f12a5
735c36862ca0cbf9be4300c17809f4cdfaeab800a61254ab5906e20abb935711
GET /remote/auth/info HTTP/1.1
Host: my.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: application/json
content-length: 12
cache-control: no-cache
pragma: no-cache
set-cookie: cid=13079061988789946478083431297382803803; Domain=.satu.kz; Max-Age=2592000; Path=/; expires=Thu, 04-Jan-2024 03:28:39 GMT
user_tracker=64ed5d52b34251483ce09ea58fc155f823c652c0|91.90.42.154|2023-12-05; Domain=.satu.kz; Path=/
csrf_token=4209adee9f894adda3d15b05bd24ce4c; Domain=.satu.kz; Max-Age=31449600; Path=/; expires=Tue, 03-Dec-2024 03:28:39 GMT; secure; SameSite=None
auth=81945c8394f5a78661e368b35231577a73ac0584; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly
auth=81945c8394f5a78661e368b35231577a73ac0584; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly; SameSite=None
evoauth=wddcda6c9d40a44b1aaf5005e6d094666; Domain=.satu.kz; HttpOnly; Max-Age=31536000; Path=/; SameSite=None; Secure
referrer-policy: no-referrer-when-downgrade
access-control-allow-headers: X-CSRFToken,X-PromUserID,Content-Type,X-Requested-With,X-Image-Hashes,X-LANGUAGE,X-DisableSafariCORSCheck,Authorization
access-control-max-age: 600
access-control-allow-origin: https://leaderts.kz
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS,DELETE
access-control-expose-headers: X-CSRFToken, X-SIGN
x-csrftoken: 4209adee9f894adda3d15b05bd24ce4c
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: 753ed0b0-8c44-4590-886a-e45950c9c2fd
X-Firefox-Spdy: h2
www.google.com/maps?q=51.23168013027282,71.43753194638643&hl=ru&output=embed
142.250.74.100 0 B URL www.google.com/maps?q=51.23168013027282,71.43753194638643&hl=ru&output=embed
IP 142.250.74.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps?q=51.23168013027282,71.43753194638643&hl=ru&output=embed HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m2!2m1!1s51.23168013027282,71.43753194638643!3m1!1sru!5m1!1sru
vary: Origin, X-Origin, Referer
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/31e0b6d9/www-player.css
216.58.211.14200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/www-player.css
IP 216.58.211.14:443
Requested by https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 18f844aa571ef66c0f165fe56a2f0821
849c61720b741db03f689c461e8e4eedd3c4ce21
436743ad0889ad9399a1f33edb65d8bf1c71cfbce1b0fce549769e7705c9ceec
GET /s/player/31e0b6d9/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:12 GMT
expires: Fri, 29 Nov 2024 04:32:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 428187
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/embed.js
216.58.211.14 16 kB URL www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/embed.js
IP 216.58.211.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (3391)
Hash 4b993df6aaec92ba17cc4d526ad2e4bd
a0b696788d5d621280e4f642b4c66875d40870cb
f21a803f0b7f63109cd608bfbe9769a3dc2e2a17c8e885826529d3981d15d313
GET /s/player/31e0b6d9/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 16506
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:15 GMT
expires: Fri, 29 Nov 2024 04:32:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 428184
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
my.satu.kz/remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1
193.242.216.17 22 B URL my.satu.kz/remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1
IP 193.242.216.17:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5aa269d127d995dce38d2501952b6f4f
fb2fac5bfa73262ff2ded241d1108c45eff72ae8
ece3b521a279e116f8ae81c4a1c50c3da8d18be912744f0895cee6072f8723d8
GET /remote/header/company_site_header/257124?current_url=https%3A%2F%2Fleaderts.kz%2F&site_language=ru&is_premium_service_paid=1 HTTP/1.1
Host: my.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: application/json
content-length: 22
cache-control: no-cache
pragma: no-cache
set-cookie: cid=95226504823768009760564959774502026198; Domain=.satu.kz; Max-Age=2592000; Path=/; expires=Thu, 04-Jan-2024 03:28:39 GMT
user_tracker=64ed5d52b34251483ce09ea58fc155f823c652c0|91.90.42.154|2023-12-05; Domain=.satu.kz; Path=/
csrf_token=fbaed36875774271a56fdc6625abd9c7; Domain=.satu.kz; Max-Age=31449600; Path=/; expires=Tue, 03-Dec-2024 03:28:39 GMT; secure; SameSite=None
auth=34c35bb9fcbda17e31e2db3c53352d6728202341; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly
auth=34c35bb9fcbda17e31e2db3c53352d6728202341; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly; SameSite=None
evoauth=wd85e6ffac0474d278c546a99a81b118e; Domain=.satu.kz; HttpOnly; Max-Age=31536000; Path=/; SameSite=None; Secure
referrer-policy: no-referrer-when-downgrade
access-control-allow-headers: X-CSRFToken,X-PromUserID,Content-Type,X-Requested-With,X-Image-Hashes,X-LANGUAGE,X-DisableSafariCORSCheck,Authorization
access-control-max-age: 600
access-control-allow-origin: https://leaderts.kz
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS,DELETE
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: 917436be-f736-4251-8299-e994516233aa
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 10:04:07 GMT
expires: Fri, 29 Nov 2024 10:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 408272
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js
216.58.211.14200 OK 98 kB URL GET HTTP/3 www.youtube.com/s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js
IP 216.58.211.14:443
Requested by https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (682)
Hash 24cd2bdc1dd00086a1efbc664060bb49
064027f89f2e8f22be774e7468f7ae4ab79efcbc
4d453a47ad0d1b30a7292b6f712d8645db141ed6adea69b8e7d802f8022365fd
GET /s/player/31e0b6d9/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:12 GMT
expires: Fri, 29 Nov 2024 04:32:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 428187
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 03:26:41 GMT
expires: Wed, 04 Dec 2024 03:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 118
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/base.js
216.58.211.14 784 kB URL www.youtube.com/s/player/31e0b6d9/player_ias.vflset/en_US/base.js
IP 216.58.211.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (555)
Size 784 kB (784263 bytes)
Hash 101fe6d09a2a65ba52bbafa55f73d316
46b1b5f64db74e841d0f606543980dea804707d8
ddc70bebc8a0e4ae5b13a5f8409693a3e88aa4b4415a75f632f11d0f0c423457
GET /s/player/31e0b6d9/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 784263
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:32:15 GMT
expires: Fri, 29 Nov 2024 04:32:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 03:10:29 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 428184
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
leaderts.kz/cloud-cgi/static/kazprom-uc/production/design_template/635/css/keppel-be42d5b1878c129bb0fb625e8015595e.css
194.4.59.205200 OK 157 kB URL GET HTTP/2 leaderts.kz/cloud-cgi/static/kazprom-uc/production/design_template/635/css/keppel-be42d5b1878c129bb0fb625e8015595e.css
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Size 157 kB (156844 bytes)
Hash 20ee7a53e1c8742f8534e834217b2772
ecc018fc311b02d660f25e9a51f9b02e259ad524
af64086f6e5bbcd985c4bf62b3eb50a8a2e755ac7d112f8d1a33780d5ab7e7b7
GET /cloud-cgi/static/kazprom-uc/production/design_template/635/css/keppel-be42d5b1878c129bb0fb625e8015595e.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:38 GMT
content-type: text/css
x-minion-expiration: Mon, 11 Dec 2023 06:46:46 GMT
x-minion-role: cache
x-envoy-upstream-service-time: 3
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: X-CSRFToken, X-PromUserID, Content-Type, X-Requested-With, X-Image-Hashes, X-LANGUAGE, X-Test-Mode, X-Cache-Status, X-Cache-Key
x-cache-status: MISS
x-cache-key: leaderts.kz/cloud-cgi/static/kazprom-uc/production/design_template/635/css/keppel-be42d5b1878c129bb0fb625e8015595e.css
x-servant: k8s-prom-nginx-1
content-encoding: gzip
X-Firefox-Spdy: h2
images.satu.kz/175886189_175886189.jpg
193.242.216.19 78 kB URL images.satu.kz/175886189_175886189.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x550, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f7e540d811702f3ce857f0a594329e40
c2a818a027a6fe3a3a49aadcc178a94db9878e48
0d32030910234dcce6461da2ab7b49eda9d7a1ff5aee2b92c960b61032a0524e
GET /175886189_175886189.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=4209adee9f894adda3d15b05bd24ce4c; auth=81945c8394f5a78661e368b35231577a73ac0584; evoauth=wddcda6c9d40a44b1aaf5005e6d094666
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 77600
x-image-source: True original: local
x-image-meta: 095788727e1c3110261378731c9477a270da6d34_9
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 112
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-0
x-request-id: 07e5e1fb-397b-4b0f-888e-78f53e6f42c0
X-Firefox-Spdy: h2
images.satu.kz/174497357_174497357.jpg
193.242.216.19 163 kB URL images.satu.kz/174497357_174497357.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x550, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 163 kB (162748 bytes)
Hash c692a441f8978b2f5065240cff553b48
ebb643af702abdb7a25582a2b7b4a8d9a831f648
b87dca4dddc919ef2c335baf4b9af84dba38fd528938b4fa2be73fd3112b8a85
GET /174497357_174497357.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=4209adee9f894adda3d15b05bd24ce4c; auth=81945c8394f5a78661e368b35231577a73ac0584; evoauth=wddcda6c9d40a44b1aaf5005e6d094666
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 162748
x-image-source: True original: local
x-image-meta: 6a909274667f67d86bfab72faf5bc3eaadd901e0_9
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 117
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-0
x-request-id: b25b3fda-b74e-45ee-84d3-b7e03d1734d5
X-Firefox-Spdy: h2
images.satu.kz/180182313_180182313.jpg
193.242.216.19 91 kB URL images.satu.kz/180182313_180182313.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x550, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7daa10d2e8b05256ff42349bf3b10177
114ba55ebef5d42bcd9178dcae7099545853476d
662cf3f5dc8c2553f4265a796c5b938e33033bb85b7ba1336b6266f4c7b2e7f5
GET /180182313_180182313.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=4209adee9f894adda3d15b05bd24ce4c; auth=81945c8394f5a78661e368b35231577a73ac0584; evoauth=wddcda6c9d40a44b1aaf5005e6d094666
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 90958
x-image-source: True original: local
x-image-meta: 2dcd873643fac80112539384c0258c707e05f986_9
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 93
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-0
x-request-id: ba9739ab-9aaf-48f6-9508-655b45c2af22
X-Firefox-Spdy: h2
images.satu.kz/176503633_176503633.jpg
193.242.216.19 127 kB URL images.satu.kz/176503633_176503633.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x550, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 127 kB (126754 bytes)
Hash 611d98fc74319561351f3c662da42685
38c65962bc47200f5499d2febaaf47fbaf85fd63
e4796f88bc2d935aaa7576ab02f241e83f1deb4a3c472b6e6fec3dc54dd4e591
GET /176503633_176503633.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=4209adee9f894adda3d15b05bd24ce4c; auth=81945c8394f5a78661e368b35231577a73ac0584; evoauth=wddcda6c9d40a44b1aaf5005e6d094666
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 126754
x-image-source: True original: local
x-image-meta: 640865b448f9c0446d7d0b7caac0e6b6ea9480c6_9
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 149
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-3
x-request-id: c00a5990-26b1-46fe-bce7-5aaf0274c38f
X-Firefox-Spdy: h2
images.satu.kz/187624898_187624898.jpg
193.242.216.19 132 kB URL images.satu.kz/187624898_187624898.jpg
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 132 kB (132346 bytes)
Hash a5134c6f99b8a8ca49ef8ceb0dd1ca35
984638fe965676339938d1840079572c94863e42
c963794554be22251be98191b456da7375d664f6a0a1bdbff25b93b55660328b
GET /187624898_187624898.jpg HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=4209adee9f894adda3d15b05bd24ce4c; auth=81945c8394f5a78661e368b35231577a73ac0584; evoauth=wddcda6c9d40a44b1aaf5005e6d094666
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 132346
x-image-source: True original: local
x-image-meta: bf494d7437be453a9c94a1712c35ee59d32fe013_9
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 87
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-4
x-request-id: 804ca8fd-3992-41a4-8cd3-3721d6fa66cb
X-Firefox-Spdy: h2
leaderts.kz/image/png_sprites/site-hc059eebc86aad2b4f3c766687fc39306f.png
194.4.59.205 83 kB URL leaderts.kz/image/png_sprites/site-hc059eebc86aad2b4f3c766687fc39306f.png
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type PNG image data, 310 x 293, 8-bit/color RGBA, non-interlaced\012- data
Hash 059eebc86aad2b4f3c766687fc39306f
ade45ee64ae2ccda80c7609aa3bb943a2edf26a1
d2ce2987680f671d468d85745212a5c78c704b70a7c8e2114b424dd4be71baa9
GET /image/png_sprites/site-hc059eebc86aad2b4f3c766687fc39306f.png HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/cloud-cgi/static/uaprom-static/css/member_common-hc287421f7601da9334bdaf4e384613a2f.css
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746924.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/png
content-length: 82874
set-cookie: auth=f3fd478b53616a9cd4c937c23d9a2230bc9a9cb8; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly
auth=f3fd478b53616a9cd4c937c23d9a2230bc9a9cb8; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:39 GMT; secure; HttpOnly; SameSite=None
last-modified: Tue, 08 Aug 2023 11:27:24 GMT
x-rgw-object-type: Normal
etag: "059eebc86aad2b4f3c766687fc39306f"
x-amz-meta-s3cmd-attrs: atime:1691493886/ctime:1691493882/gid:0/gname:root/md5:059eebc86aad2b4f3c766687fc39306f/mode:33188/mtime:1691493882/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000eaf71275d9e17b42-0064d6292f-702a907-ams-1
x-cache-status: HIT
x-cache-key: leaderts.kz/image/png_sprites/site-hc059eebc86aad2b4f3c766687fc39306f.png
x-servant: k8s-prom-nginx-0
x-fallback: true
x-uri2: uaprom-static.s3.evo-nl.dev/image/png_spritessite-hc059eebc86aad2b4f3c766687fc39306f.png
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_77fc3e75aec5bc12ebc1.css
194.4.59.205 834 B URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_77fc3e75aec5bc12ebc1.css
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (5695), with no line terminators
Hash a5e813167432c1b656a8976cb39a268e
47fe7f0cab32914cd69ba437ce1650b869377c90
9b1164d60fedc2e4c1660ffe53bc2ecd67fa205ea63a8377ba5d0812e1a5a0b1
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_77fc3e75aec5bc12ebc1.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: text/css
content-length: 834
last-modified: Tue, 08 Aug 2023 11:24:56 GMT
x-rgw-object-type: Normal
etag: "be93f84a1a3d1ab1901b4c0927d76c09"
x-amz-meta-s3cmd-attrs: atime:1691493872/ctime:1691493883/gid:0/gname:root/md5:be93f84a1a3d1ab1901b4c0927d76c09/mode:33188/mtime:1691493871/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000596ef62d220dd3fc-0064d62e35-702a907-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: lshop.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_77fc3e75aec5bc12ebc1.css
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/maps/embed?origin=mfe&pb=!1m2!2m1!1s51.23168013027282,71.43753194638643!3m1!1sru!5m1!1sru
142.250.74.100 924 B URL www.google.com/maps/embed?origin=mfe&pb=!1m2!2m1!1s51.23168013027282,71.43753194638643!3m1!1sru!5m1!1sru
IP 142.250.74.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1234)
Hash 0b2512102847e219ea90b123546f184a
fd4ac3b95134bc8d24a382597d31158c99c3ace1
670e877c6e7143a2ca7ccce45c44d5a9de22a18653b76442ee667ce4dc55fa00
GET /maps/embed?origin=mfe&pb=!1m2!2m1!1s51.23168013027282,71.43753194638643!3m1!1sru!5m1!1sru HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-mUUr0DhZc8fssDte2lzxUw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:39 GMT
server: scaffolding on HTTPServer2
content-length: 924
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_b6212dc40a38d25a9859.js
194.4.59.205 7.2 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_b6212dc40a38d25a9859.js
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type ASCII text, with very long lines (28153), with no line terminators
Hash 5fe1a9773243666bc3defac828b2d043
da736788463a552cfbf79efa2be8b0aa5774fb08
406ec9ace954bcb518cd96217eac6c9552b7db6ef3248d353d7f1dcf321ff2a6
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_b6212dc40a38d25a9859.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: application/javascript
content-length: 7217
last-modified: Tue, 08 Aug 2023 11:24:56 GMT
x-rgw-object-type: Normal
etag: "ba5161afd7e2284517f357795d729705"
x-amz-meta-s3cmd-attrs: atime:1691493872/ctime:1691493882/gid:0/gname:root/md5:ba5161afd7e2284517f357795d729705/mode:33188/mtime:1691493871/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000d7b28f36b8e9f8a3-0064d62e35-702a907-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: xn--e1aaudfj.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/SocialApp_b6212dc40a38d25a9859.js
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_827932d4fe0664780d97.css
194.4.59.205200 OK 261 B URL GET HTTP/2 leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_827932d4fe0664780d97.css
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (642), with no line terminators
Hash 33202f5583a302ed51cfadcc60033aa3
a99301a41960b1d39cbb0a41c0271c426b65e491
3ab8b49d4274d713081c9673ed184159cd54559c24b359c7b213bd2945c6373a
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_827932d4fe0664780d97.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: text/css
content-length: 261
last-modified: Tue, 08 Aug 2023 11:24:56 GMT
x-rgw-object-type: Normal
etag: "856c408f11bd0edf4c9fb45ee1f42ebb"
x-amz-meta-s3cmd-attrs: atime:1691493872/ctime:1691493882/gid:0/gname:root/md5:856c408f11bd0edf4c9fb45ee1f42ebb/mode:33188/mtime:1691493871/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx0000042218ff04a5cb5cd-0064d62e35-62098cd-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: seeozone.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_827932d4fe0664780d97.css
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_4388f3104481c2718746.js
194.4.59.205200 OK 4.1 kB URL GET HTTP/2 leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_4388f3104481c2718746.js
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (15877), with no line terminators
Hash 373b970c7997a1ee8f2975864a4be011
f3f73c78658abd5d02eeae41e642539b5b0e602f
34a7a899e949d97c415c158875698a73e7d27901df650cfe36986d5155b6863b
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_4388f3104481c2718746.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: application/javascript
content-length: 4057
last-modified: Tue, 08 Aug 2023 11:24:56 GMT
x-rgw-object-type: Normal
etag: "5fa74b5add651c2494da3fe62fb38af1"
x-amz-meta-s3cmd-attrs: atime:1691493872/ctime:1691493882/gid:0/gname:root/md5:5fa74b5add651c2494da3fe62fb38af1/mode:33188/mtime:1691493871/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000145b628a25d7706b-0064d631a9-62098cd-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: lshop.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/initSearchSuggester_4388f3104481c2718746.js
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.F6iRVDW95aA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq9pmT7tJkFFvUkid-e-0Wpomm2EQ/m=el_main
142.250.74.106 82 kB URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.F6iRVDW95aA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq9pmT7tJkFFvUkid-e-0Wpomm2EQ/m=el_main
IP 142.250.74.106:0
File type ASCII text, with very long lines (2193)
Hash 45498924419212780ef341b346f83f38
407175bd46e2ac2ccd073473131c06da6c8cc9a5
1cb3f0ad4f6b1cc587a2e0d16f7c71a298a67fd445dd9ed2ca370cb831ecc02e
GET /_/translate_http/_/js/k=translate_http.tr.no.F6iRVDW95aA.O/d=1/exm=el_conf/ed=1/rs=AN8SPfq9pmT7tJkFFvUkid-e-0Wpomm2EQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 81976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 18:19:43 GMT
expires: Tue, 03 Dec 2024 18:19:43 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 02 Dec 2023 00:18:31 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 32936
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
images.satu.kz/169899112_169899112.ico
193.242.216.19 5.1 kB URL images.satu.kz/169899112_169899112.ico
IP 193.242.216.19:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 256x166, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac9e32096ce1d5614b40aa08cc10f105
4965a61a4bff2341ef6a771d3a2b32eb335f6448
7e30ffc961bcf3d3215f7399194f7c926ae72aecc9b3140955d4b8acb9e07f06
GET /169899112_169899112.ico HTTP/1.1
Host: images.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=fbaed36875774271a56fdc6625abd9c7; auth=34c35bb9fcbda17e31e2db3c53352d6728202341; evoauth=wd85e6ffac0474d278c546a99a81b118e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: image/webp
content-length: 5094
x-image-source: True original: local
x-image-meta: 025df16221baa7c088d6d267cc3da9ab27b92f02_5
cache-control: public, max-age=31536000
etag: "CacheForever"
last-modified: Fri, 21 Feb 2014 08:24:20 GMT
x-envoy-upstream-service-time: 15
x-cache-status: HIT
x-servant: k8s-prom-nginx-static-1
x-request-id: 6ee666cf-2e51-4428-99db-7a8f3b16603e
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.38.233 728 B URL zerossl.ocsp.sectigo.com/
IP 104.18.38.233:0
Hash a78410c1d0e3c3e8556c99f4742deecb
8e4320e375bafe2811805f8e0d79e7a7c12e1cdd
469dee326602083aa6e16c7840741a74864935fdbbfc3dff33f7eaab8fedd1d6
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 03:28:39 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sun, 03 Dec 2023 23:48:56 GMT
Expires: Sun, 10 Dec 2023 23:48:55 GMT
Etag: "8e4320e375bafe2811805f8e0d79e7a7c12e1cdd"
Cache-Control: max-age=504791,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 830933486f9956a9-OSL
maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=ru&callback=onApiLoad
142.250.74.106 64 kB URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=ru&callback=onApiLoad
IP 142.250.74.106:0
File type ASCII text, with very long lines (2470)
Hash 721f9e9e594c2b771b6842efe3a151ca
e383317bdc8adf68cab96856443ecb76e16cde6e
22b0cc37d85cd07d89012d6d94642346342e9534803a0ed34cc0fc15c0aadb56
GET /maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=ru&callback=onApiLoad HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=1800
timing-allow-origin: *
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:39 GMT
server: scaffolding on HTTPServer2
content-length: 63457
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
uaprom-static.c.evo.dev/js/build/common/wp_wormhole_df081c1631a4f138bdbd.js
193.34.169.9 12 kB URL uaprom-static.c.evo.dev/js/build/common/wp_wormhole_df081c1631a4f138bdbd.js
IP 193.34.169.9:0
File type ASCII text, with very long lines (44693), with no line terminators
Hash e5111d90715c9cb2a8685254d4756a4f
4498a976e5c215de1824a38d0307f77d173406f6
5c1868b12f1e528da10d6af730ac8b37eaad6427b293fa4206129e2b6bb26cf3
GET /js/build/common/wp_wormhole_df081c1631a4f138bdbd.js HTTP/1.1
Host: uaprom-static.c.evo.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://my.satu.kz
DNT: 1
Connection: keep-alive
Referer: https://my.satu.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:39 GMT
content-type: application/javascript
content-length: 11813
last-modified: Wed, 02 Nov 2022 03:07:28 GMT
x-rgw-object-type: Normal
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000000000005184ee49-006543191b-46c59b2c-openstack-1
x-trouble: IAMHERE
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: X-CSRFToken, X-PromUserID, Content-Type, X-Requested-With, X-Image-Hashes, X-LANGUAGE, X-Test-Mode, X-Cache-Status, X-Cache-Key
x-cache-key: cdnuaprom-static.c.evo.dev/js/build/common/br-encoded-wp_wormhole_df081c1631a4f138bdbd.js
x-cache-status: HIT, HIT
x-cache-source: local
x-servant: nginx-cache-02
x-cache-type: main
accept-ranges: bytes
x-lb-name: sidewinder
x-cdn-ruri: /js/build/common/br-encoded-wp_wormhole_df081c1631a4f138bdbd.js
X-Firefox-Spdy: h2
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
142.250.74.35200 OK 4.0 kB URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
IP 142.250.74.35:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (20367), with no line terminators
Hash 72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 18:39:49 GMT
expires: Tue, 03 Dec 2024 18:39:49 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 31731
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.106 23 B URL maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.106:0
File type JSON data\012- , ASCII text
Hash 8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:40 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.google.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.106 1.4 kB URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.106:0
Hash a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:40 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=m0S27B0bUVDEeKqo48ETasbP-vpkhHIX3efhhxxr4rLgF7ySMC_hqUIkDcg-6fqJxzqws6ALBOAI2nBB8CzxApSZxqFMKECtClj_NqUle6_TwqMJTszPckwIzA1_hsM85wIChmMl0o9OcEjsgk6OwByuSN9vhElXD9pVBgaoMT8; expires=Wed, 05-Jun-2024 03:28:40 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+260; expires=Thu, 04-Dec-2025 03:28:40 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 05 Dec 2023 03:28:40 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.gstatic.com/maps-api-v3/embed/js/55/3/intl/ru_ALL/init_embed.js
142.250.74.35 62 kB URL maps.gstatic.com/maps-api-v3/embed/js/55/3/intl/ru_ALL/init_embed.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (3230)
Hash 1ab3d9a9a149021ee2f5889d79504e20
a9af5a4923cd1b529974cae3e49cb4576f34a760
0a836be789ac49d25854601a0ca9314af8ec359bedf36e016e58216ba375289d
GET /maps-api-v3/embed/js/55/3/intl/ru_ALL/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 61528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:34:32 GMT
expires: Thu, 28 Nov 2024 21:34:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:39 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 453248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tracker.satu.kz/endpoint/events
193.34.169.22204 No Content 0 B URL POST HTTP/2 tracker.satu.kz/endpoint/events
IP 193.34.169.22:443
Certificate IssuerZeroSSL
Subjectsatu.kz
Fingerprint3C:AC:48:C2:C6:D2:7E:34:42:EC:64:C2:2E:83:57:FE:39:CB:10:72
ValiditySat, 04 Nov 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /endpoint/events HTTP/1.1
Host: tracker.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 736
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=fbaed36875774271a56fdc6625abd9c7; auth=34c35bb9fcbda17e31e2db3c53352d6728202341; evoauth=wd85e6ffac0474d278c546a99a81b118e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-max-age: 2592000
access-control-allow-headers: X-CSRFToken, X-PromUserID
X-Firefox-Spdy: h2
tracker.satu.kz/endpoint/pageviews
193.34.169.22 0 B URL tracker.satu.kz/endpoint/pageviews
IP 193.34.169.22:0
Certificate IssuerZeroSSL
Subjectsatu.kz
Fingerprint3C:AC:48:C2:C6:D2:7E:34:42:EC:64:C2:2E:83:57:FE:39:CB:10:72
ValiditySat, 04 Nov 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /endpoint/pageviews HTTP/1.1
Host: tracker.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1172
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=fbaed36875774271a56fdc6625abd9c7; auth=34c35bb9fcbda17e31e2db3c53352d6728202341; evoauth=wd85e6ffac0474d278c546a99a81b118e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-max-age: 2592000
access-control-allow-headers: X-CSRFToken, X-PromUserID
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/common.js
142.250.74.106 57 kB URL maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/common.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (5883)
Hash 4019c3f711040f4cc65b22dd05b87d3e
7aefe9e3acce0c14731072889fa5535ba5ba0a2f
0dba73816531587f084393123549d1fb6c5cd7936debba556e58f004bcbf74b5
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 57405
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:34:23 GMT
expires: Thu, 28 Nov 2024 21:34:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 453257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/util.js
142.250.74.106 55 kB URL maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/util.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (562)
Hash 2aae9e63a2177300dbdda87824e50ed0
9428bff49f4eb1039aae6030aa34e9964c0941a6
a2ab294b556d35317b305b37afaf1c815f663687aabefbbb772e4808398d9fb2
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 55251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:34:23 GMT
expires: Thu, 28 Nov 2024 21:34:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 453257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/map.js
142.250.74.106 24 kB URL maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/map.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (2411)
Hash 3ce1e3303ea57abb6a34618ae8d3e011
3c8ff40f288b66bbe64c8fe67e557c44282f5bf8
a315bb2965a94f32c767fb346acfeb16430c02464b673567da090ce21df23e0f
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/map.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 24062
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:34:23 GMT
expires: Thu, 28 Nov 2024 21:34:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 453257
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/overlay.js
142.250.74.106 1.3 kB URL maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/overlay.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (1152)
Hash ec49eb56637fcbfb088bc23586445fcc
db74cf74487b83d29481a4172c6fbbf7d4912c6b
b3db62c16d038b8e5a98ee66a6ea2c9f957072e013a0c84392ecc007b13c1a16
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/overlay.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 22:32:09 GMT
expires: Tue, 03 Dec 2024 22:32:09 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 17791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/onion.js
142.250.74.106 8.9 kB URL maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/onion.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (2559)
Hash 8ff5d8ae72d7bd64565d68b17979deda
c4bfe2f6bdd8e0bc29c17b5fee03340c0aee0513
e5f1aec86fe6639b85ae86de64048af893365b6849c78d15f2691ef7b7255263
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/onion.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 8920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:29:57 GMT
expires: Tue, 03 Dec 2024 23:29:57 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 14323
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/search_impl.js
142.250.74.106200 OK 1.2 kB URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/55/3/intl/ru_ALL/search_impl.js
IP 142.250.74.106:443
Requested by https://www.google.com/maps/embed?origin=mfe&pb=!1m2!2m1!1s51.23168013027282,71.43753194638643!3m1!1sru!5m1!1sru
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1470)
Hash ef703a117c6ee336ee42e55b590f2772
441c9e9f740e2475491a60e65937ce7092509d6e
f417dd89b1b905f4005be55500cfee152f1f704db2aa5f3fb60f94d7d4ea7dcd
GET /maps-api-v3/api/js/55/3/intl/ru_ALL/search_impl.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 1215
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:37:54 GMT
expires: Thu, 28 Nov 2024 21:37:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 00:55:44 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 453046
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/vendors~shopping_cart_sites_515da643caa15854ee56.js
194.4.59.205200 OK 58 kB URL GET HTTP/2 leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/vendors~shopping_cart_sites_515da643caa15854ee56.js
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65368)
Hash b293c3240ca5c68119abf52036ed6e1e
0c7ccce35f25e03c7e510989ddb61a2f72336d8c
c9735a514d7a967574328d1918e7d16eb4401bb9ed832b208320d6f9a2d7b0e9
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/vendors~shopping_cart_sites_515da643caa15854ee56.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: application/javascript
content-length: 58131
last-modified: Tue, 08 Aug 2023 11:24:57 GMT
x-rgw-object-type: Normal
etag: "bce8d1d1d210a85b39843c1b3b021c7a"
x-amz-meta-s3cmd-attrs: atime:1691493872/ctime:1691493882/gid:0/gname:root/md5:bce8d1d1d210a85b39843c1b3b021c7a/mode:33188/mtime:1691493871/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000d395731da31ec88b-0064d62e36-61dcd30-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: lshop.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/vendors~shopping_cart_sites_515da643caa15854ee56.js
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_5b749a6d73dbdc3755fd.css
194.4.59.205200 OK 33 kB URL GET HTTP/2 leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_5b749a6d73dbdc3755fd.css
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash fb7291a80ada2cd5fb69256542df5f7b
03f36fe9aaaa4ddb982b49e52e947dbb81856409
0bd0ae41646951d8c7d5fd35c4d78ac67653c28f418da028b11393f9a7c661f0
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_5b749a6d73dbdc3755fd.css HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: text/css
content-length: 33394
last-modified: Wed, 04 Oct 2023 03:04:39 GMT
x-rgw-object-type: Normal
etag: "bf5982303d429d96d4201abe44c14fba"
x-amz-meta-s3cmd-attrs: atime:1696388662/ctime:1696388658/gid:0/gname:root/md5:bf5982303d429d96d4201abe44c14fba/mode:33188/mtime:1696388654/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000e9b48c84f21c6f4d-00651e8126-a631168-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: seeozone.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_5b749a6d73dbdc3755fd.css
x-servant: k8s-prom-nginx-1
accept-ranges: bytes
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138 0 B URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i11717503&2i5599260&2e1&3u16&4m2&1u670&2u350&5m5&1e0&5sru&6sus&10b1&12b1&client=google-maps-embed&token=123025
142.250.74.106 140 B URL maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage?1m2&1i11717503&2i5599260&2e1&3u16&4m2&1u670&2u350&5m5&1e0&5sru&6sus&10b1&12b1&client=google-maps-embed&token=123025
IP 142.250.74.106:0
File type PNG image data, 670 x 350, 1-bit colormap, non-interlaced\012- data
Hash 1d45e083508e6c407fe66164610ec97c
c36f0c3cb38a50ec88c7b05799ea8520c4bad994
2e6851fdf75860f1b4a203a31d9cc5e8b42f92ffb1b4fbb29940e14cc9f3efc6
GET /maps/api/js/StaticMapService.GetMapImage?1m2&1i11717503&2i5599260&2e1&3u16&4m2&1u670&2u350&5m5&1e0&5sru&6sus&10b1&12b1&client=google-maps-embed&token=123025 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
date: Tue, 05 Dec 2023 03:28:40 GMT
expires: Wed, 06 Dec 2023 03:28:40 GMT
cache-control: public, max-age=86400
server: scaffolding on HTTPServer2
content-length: 140
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=26
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227 9.8 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9832, version 1.0\012- data
Hash efe937997e08e15b056a3643e2734636
d02decbf472a0928b054cc8e4b13684539a913db
53f2931d978bf9b24d43b5d556ecf315a6b3f089699c5ba3a954c4dde8663361
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:46:24 GMT
expires: Fri, 29 Nov 2024 04:46:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:49 GMT
content-type: font/woff2
age: 427336
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_05d9a119ac5c5bdeb1ce.js
194.4.59.205 70 kB URL leaderts.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_05d9a119ac5c5bdeb1ce.js
IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type Unicode text, UTF-8 text, with very long lines (65317), with no line terminators
Hash 64e62572f7ba184306964bca8949ded0
805fc20dc9052beac7f7315876cb993ac0cb3f3f
a484dd8b48e799bb20ad2460139543559524225abefc25caf53562b5013d7624
GET /cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_05d9a119ac5c5bdeb1ce.js HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: application/javascript
content-length: 70269
last-modified: Mon, 20 Nov 2023 03:06:05 GMT
x-rgw-object-type: Normal
etag: "9d03e90f4b795214e4aedb597d67b21b"
x-amz-meta-s3cmd-attrs: atime:1700449533/ctime:1700449529/gid:0/gname:root/md5:9d03e90f4b795214e4aedb597d67b21b/mode:33188/mtime:1700449522/uid:0/uname:root
cache-control: public,max-age=31536000,immutable
content-encoding: br
x-amz-storage-class: STANDARD
x-amz-request-id: tx000009a98837b3b609e51-00655cb441-cf145cb-ams-1
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: lshop.kz/cloud-cgi/static/uaprom-static/js/build/vas-site/shopping_cart_sites_05d9a119ac5c5bdeb1ce.js
x-servant: k8s-prom-nginx-0
accept-ranges: bytes
X-Firefox-Spdy: h2
leaderts.kz/graphql
194.4.59.205 191 B IP 194.4.59.205:0
ASN #202958 LLP Kompaniya Hoster.KZ
File type JSON data\012- , ASCII text, with no line terminators
Hash 0b169254b78c6e20287338d57ef7dfa1
77f8b90ba49a20e306fb6bf4f1c49426475db122
a21ad0ed5e5db0c73f4668da1bd6b674826ae13ecf895c7b9c08aa1b14116457
POST /graphql HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
content-type: application/json
Content-Length: 215
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: application/json
content-length: 191
cache-control: no-cache
pragma: no-cache
referrer-policy: no-referrer-when-downgrade
set-cookie: user_tracker=64ed5d52b34251483ce09ea58fc155f823c652c0|91.90.42.154|2023-12-05; Domain=.satu.kz; Path=/
auth=1645f6a0cb689cdbd7480d40d070876a3dca87cb; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:40 GMT; secure; HttpOnly
auth=1645f6a0cb689cdbd7480d40d070876a3dca87cb; Domain=.satu.kz; Max-Age=31536000; Path=/; expires=Wed, 04-Dec-2024 03:28:40 GMT; secure; HttpOnly; SameSite=None
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: 1e1c6d82-83c9-4176-b3c0-c2795472a418
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138 40 kB URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 228535ac28464e1f1b1d4fd297412145
410a1aa2407d1a2aa14a5ff420c7f84630b428e7
aa397e6ce2b8838de58c147a782eb032987aebabb79e9fcd1f54bbabe871427d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:40 GMT
server: ESF
cache-control: private
content-length: 40522
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
216.58.207.227 3.3 kB URL fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP 216.58.207.227:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Hash 2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:23:19 GMT
expires: Fri, 29 Nov 2024 23:23:19 GMT
cache-control: public, max-age=31536000
age: 360321
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.35 1.8 kB URL www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.35:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:20:13 GMT
expires: Fri, 29 Nov 2024 05:20:13 GMT
cache-control: public, max-age=31536000
age: 425307
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.googleapis.com/translate_static/img/te_ctrl3.gif
142.250.74.106200 OK 1.4 kB URL GET HTTP/3 translate.googleapis.com/translate_static/img/te_ctrl3.gif
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type GIF image data, version 89a, 84 x 19\012- data
Hash 9afe50090c0bc612953d081295eab5b1
71a4da2a622879c29176ecfa5afe1bbe3e8cfa40
d228d0256370863119c043f1e5ca8f3930f6999bd9f250434b6d8935f45dc171
GET /translate_static/img/te_ctrl3.gif HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:42:20 GMT
expires: Tue, 03 Dec 2024 23:42:20 GMT
cache-control: public, max-age=31536000
age: 13580
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/images/cleardot.gif
142.250.74.100200 OK 43 B URL GET HTTP/3 www.google.com/images/cleardot.gif
IP 142.250.74.100:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Tue, 05 Dec 2023 03:28:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/js/th/hozbaArpAcEtb7ltfJysqAapnffmHDhQfzgy1UI8b00.js
142.250.74.100200 OK 15 kB URL GET HTTP/3 www.google.com/js/th/hozbaArpAcEtb7ltfJysqAapnffmHDhQfzgy1UI8b00.js
IP 142.250.74.100:443
Requested by https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (38538)
Hash 35833bcc74f6969a09468d9a8e9f1bff
5d1e24c030570a3de5b50a98a363cd4b04bfbd6f
868cdb680ae901c12d6fb96d7c9caca806a99df7e61c38507f3832d5423c6f4d
GET /js/th/hozbaArpAcEtb7ltfJysqAapnffmHDhQfzgy1UI8b00.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15147
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 18:36:56 GMT
expires: Tue, 03 Dec 2024 18:36:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Nov 2023 17:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 31904
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.ytimg.com/vi/lbThQpDBKSk/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIACgAWKAgwIABABGHIgSyg3MA8=&rs=AOn4CLB0Cw5R9da6bZLd4r1jD9qmPjxNTA
142.250.74.22 9.8 kB URL i.ytimg.com/vi/lbThQpDBKSk/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIACgAWKAgwIABABGHIgSyg3MA8=&rs=AOn4CLB0Cw5R9da6bZLd4r1jD9qmPjxNTA
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 1edcba375bfd232de63b9ccebcd716a0
aa74c243b9e35c4b160d1e9e3ecbfbd9ff65f2c2
88c5d05d421a957dec0473fc0b4eca1caa79a2519b8c4906d696454d58cb056b
GET /vi/lbThQpDBKSk/hqdefault.jpg?sqp=-oaymwEmCOADEOgC8quKqQMa8AEB-AH-BIACgAWKAgwIABABGHIgSyg3MA8=&rs=AOn4CLB0Cw5R9da6bZLd4r1jD9qmPjxNTA HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 9761
date: Tue, 05 Dec 2023 03:28:40 GMT
expires: Tue, 05 Dec 2023 05:28:40 GMT
cache-control: public, max-age=7200
etag: "1629706497"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106 0 B URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 05 Dec 2023 03:28:40 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106 110 B URL jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0dd24d3a572ad810691edda708d3b6d7
8c3cae4c92ed0ff514779fb0eb2d7bc3ae706baa
bc75155b2d2808f55fafc11fdafb7c1ee074fefa0d3979f50d110ad2533895a1
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 995
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:40 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/UM2wP1gKlfzwI4RI1N5BTucTMB_EZNG6yPO0YH4ixczZtxUFyB4MMdnpAoI1ie27f1nDcWzW=s68-c-k-c0x00ffffff-no-rj
142.250.74.161 3.3 kB URL yt3.ggpht.com/UM2wP1gKlfzwI4RI1N5BTucTMB_EZNG6yPO0YH4ixczZtxUFyB4MMdnpAoI1ie27f1nDcWzW=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 4bc0edc1b23a655ceed0e8dc3ca306d7
d82bd7562942a455d209f75a4060eeda91c6f416
44b34ef594ee41fef21d6cfdcaa736db0d5408065e6974cfe596e7ac33e554cf
GET /UM2wP1gKlfzwI4RI1N5BTucTMB_EZNG6yPO0YH4ixczZtxUFyB4MMdnpAoI1ie27f1nDcWzW=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Wed, 06 Dec 2023 03:28:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 03:28:40 GMT
server: fife
content-length: 3303
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/generate_204?2xeIVQ
216.58.211.14 0 B URL www.youtube.com/generate_204?2xeIVQ
IP 216.58.211.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?2xeIVQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 05 Dec 2023 03:28:41 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tracker.satu.kz/endpoint/events
193.34.169.22204 No Content 0 B URL POST HTTP/2 tracker.satu.kz/endpoint/events
IP 193.34.169.22:443
Certificate IssuerZeroSSL
Subjectsatu.kz
Fingerprint3C:AC:48:C2:C6:D2:7E:34:42:EC:64:C2:2E:83:57:FE:39:CB:10:72
ValiditySat, 04 Nov 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /endpoint/events HTTP/1.1
Host: tracker.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 736
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=fbaed36875774271a56fdc6625abd9c7; auth=34c35bb9fcbda17e31e2db3c53352d6728202341; evoauth=wd85e6ffac0474d278c546a99a81b118e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 03:28:41 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-max-age: 2592000
access-control-allow-headers: X-CSRFToken, X-PromUserID
X-Firefox-Spdy: h2
leaderts.kz/midas/rest/cart/view?source=company_site&shoppingCartIdent
194.4.59.205200 OK 105 B URL GET HTTP/2 leaderts.kz/midas/rest/cart/view?source=company_site&shoppingCartIdent
IP 194.4.59.205:443
ASN #202958 LLP Kompaniya Hoster.KZ
Certificate IssuerZeroSSL
Subjectleaderts.kz
Fingerprint11:92:CD:72:2B:32:0D:40:25:9D:78:6F:7D:5B:60:5D:17:A5:1C:25
ValiditySun, 29 Oct 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f51280b012a665368874e5ddc2c4f2d2
337a68237d9af172e63932307484c0eaafd805cf
0343bb8536cc4b19147cee2ce5a099500f075ee4114be7b372905eb3dbf0979e
GET /midas/rest/cart/view?source=company_site&shoppingCartIdent HTTP/1.1
Host: leaderts.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://leaderts.kz/
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
X-LANGUAGE: ru
DNT: 1
Connection: keep-alive
Cookie: cid=299494059759793769275653021054901114372; csrf_token_company_site=2894318b4e0a4277bf86cfba5e196076; evoauth=w917a94d67b664978abd10422c472591e; _ga_8SQ5YEJG36=GS1.1.1701746924.1.0.1701746925.0.0.0; _ga=GA1.1.607724222.1701746924
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 03:28:41 GMT
content-type: application/json; charset=utf-8
content-length: 105
access-control-allow-origin: undefined
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-request-id: d0b5315a-268b-43e5-8a3f-382898fcdd96
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
216.58.211.14 31 B URL www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 216.58.211.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701746928744
Content-Type: application/json
X-Goog-Visitor-Id: CgttQmVCeFdob0pwTSjmsbqrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231128.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701746925846&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C420%2C315&vis=1&wgl=true&ca_type=image
Content-Length: 12027
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 05 Dec 2023 03:28:43 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+199; expires=Thu, 04-Dec-2025 03:28:43 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 03:28:43 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
142.250.74.106 0 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://leaderts.kz/
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://leaderts.kz
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Tue, 05 Dec 2023 03:28:49 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+108; expires=Thu, 04-Dec-2025 03:28:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 03:28:49 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
142.250.74.106 131 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 300
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://leaderts.kz
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 05 Dec 2023 03:28:49 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+083; expires=Thu, 04-Dec-2025 03:28:49 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 03:28:49 GMT
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
216.58.211.14 31 B URL www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 216.58.211.14:0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1701746938693
Content-Type: application/json
X-Goog-Visitor-Id: CgttQmVCeFdob0pwTSjmsbqrBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231128.01.01
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1701746925260&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C420%2C315&vis=1&wgl=true&ca_type=image
Content-Length: 828
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 05 Dec 2023 03:28:53 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+451; expires=Thu, 04-Dec-2025 03:28:53 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 03:28:53 GMT
cache-control: private
tracker.satu.kz/endpoint/activity
193.34.169.22 0 B URL tracker.satu.kz/endpoint/activity
IP 193.34.169.22:0
Certificate IssuerZeroSSL
Subjectsatu.kz
Fingerprint3C:AC:48:C2:C6:D2:7E:34:42:EC:64:C2:2E:83:57:FE:39:CB:10:72
ValiditySat, 04 Nov 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /endpoint/activity HTTP/1.1
Host: tracker.satu.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 380
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Cookie: csrf_token=fbaed36875774271a56fdc6625abd9c7; auth=34c35bb9fcbda17e31e2db3c53352d6728202341; evoauth=wd85e6ffac0474d278c546a99a81b118e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 03:28:53 GMT
access-control-allow-origin: *
access-control-allow-methods: POST, GET
access-control-max-age: 2592000
access-control-allow-headers: X-CSRFToken, X-PromUserID
X-Firefox-Spdy: h2
www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
216.58.211.14200 OK 95 kB URL GET HTTP/3 www.youtube.com/embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0
IP 216.58.211.14:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/lbThQpDBKSk?wmode=transparent&rel=0&loop=1&loop=00&controls=0&showinfo=1&disablekb=1&modestbranding=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leaderts.kz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 03:28:38 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Yaf6JHe3Y6E; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=mBeBxWhoJpM; Domain=.youtube.com; Expires=Sun, 02-Jun-2024 03:28:38 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Sun, 02-Jun-2024 03:28:38 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+223; expires=Thu, 04-Dec-2025 03:28:38 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leaderts.kz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 426664
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2