gotovotvet.com/megamozg/?url=/informatika/question40922602
172.67.149.89301 Moved Permanently 0 B URL HTTP/1.1 gotovotvet.com/megamozg/?url=/informatika/question40922602
IP 172.67.149.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /megamozg/?url=/informatika/question40922602 HTTP/1.1
Host: gotovotvet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 07 Oct 2022 22:28:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 07 Oct 2022 23:28:40 GMT
Location: https://gotovotvet.com/megamozg/?url=/informatika/question40922602
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E6YUcryKrt2szvvPlBKqQIaQHk1D3fXPGznxp%2FZC9bOuI%2B91GTA7FojwR6cS5Q8pYqbjYB%2FiybrrAtJQ4QLVLzl%2FHTRluJwHTBbeG8j1gNEgKqR7N4BUZwLr%2Bf8CxixqNg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a123aacadb517-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wvpJXWFoiMOeqhkK3_cb3mdkjS6NckEb7ckaBaqqLbn0Pn29wqD6eA==
Age: 196882
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2910
Expires: Fri, 07 Oct 2022 23:17:11 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16881
Expires: Sat, 08 Oct 2022 03:10:02 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UF4QAOtr9CCOp08sNkEn8yTgWtn9oIG6XSkzC6Njc3UL/0Qc6l2Ch4mLWQAvGDkmqmUAURgFqto=
x-amz-request-id: 4FBB67CE8K0PAWHT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 21:31:22 GMT
age: 3439
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fac08d1b8b88e023b9eeecfb3782389e
51cb70bc97687c288075759a695cf6d9a9069a34
b8a633adfca8dac2d98dd66d7f86bf508dd1352be7415d9c133ae122d870646a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B8A633ADFCA8DAC2D98DD66D7F86BF508DD1352BE7415D9C133AE122D870646A"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2449
Expires: Fri, 07 Oct 2022 23:09:30 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fac08d1b8b88e023b9eeecfb3782389e
51cb70bc97687c288075759a695cf6d9a9069a34
b8a633adfca8dac2d98dd66d7f86bf508dd1352be7415d9c133ae122d870646a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "B8A633ADFCA8DAC2D98DD66D7F86BF508DD1352BE7415D9C133AE122D870646A"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2449
Expires: Fri, 07 Oct 2022 23:09:30 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 07 Oct 2022 21:29:41 GMT
Expires: Fri, 07 Oct 2022 22:20:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 80Wl7j2pGStJIloGyTwbOv97QJrKYXPz-4ebWIkuvWmChICksaC7Og==
Age: 3540
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b977272c84f04079461f54614418a55
f243495287f3e7c0be5167b388a628fcf57cbf8f
2059b19c11a13af44631ef0b36ca283fcff6b150c33b2dead8db22df918101dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2059B19C11A13AF44631EF0B36CA283FCFF6B150C33B2DEAD8DB22DF918101DC"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18181
Expires: Sat, 08 Oct 2022 03:31:42 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 077b75b03b4c1204aceed65970a7bd0e
f75016eb787ea2a5f610ab44311bd99a39705745
bdae6610e6ff268e4098f6f813bc60acd3eb9a40d43a00ef59f27d2296985504
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDAE6610E6FF268E4098F6F813BC60ACD3EB9A40D43A00EF59F27D2296985504"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4328
Expires: Fri, 07 Oct 2022 23:40:49 GMT
Date: Fri, 07 Oct 2022 22:28:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6272
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:41 GMT
Last-Modified: Fri, 07 Oct 2022 20:44:09 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash f51d404976f0e94c14b3bb2008fe4be6
2353b9dbd270aba9381d20c253e1d61268d68cc9
5d9c3e1ff4d5ff1c7c32bfa80bfee89b0c45a1c363e8ec3ab86aa277c50fa99c
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 11 Oct 2022 19:23:14 GMT
ETag: "2353b9dbd270aba9381d20c253e1d61268d68cc9"
Last-Modified: Fri, 07 Oct 2022 19:23:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1234
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a12422b5d0b55-OSL
push.services.mozilla.com/
52.41.253.170101 Switching Protocols 31 kB URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.253.170:0
Hash 1c05e941f2b036f979d733979cca4c03
ad47c7457a804857a8f9ab2dd88aff300c92a256
d7df62b5fde12fd3d945c139a132d9799ae1657fdaec5c04dcf517440fe2a4bd
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cx3jXyAfaID3RxZyVCz7uA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dhL9RZKV4GeNAJKPNKs1Pw5WBes=
yandex.ru/ads/system/context.js
5.255.255.5200 OK 108 kB URL HTTP/2 yandex.ru/ads/system/context.js
IP 5.255.255.5:0
File type ASCII text, with very long lines (65201)
Size 108 kB (108313 bytes)
Hash 93cb3c1049e612a213d1f19d7c05d343
c4331041c787ec245827a89fdcdcfb0cd84dcaba
4ea9d7e4b9a9e61b902b719fcc20cc9b1278ffb4f13484e5c956ea17b17ae8b2
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=Qh72/mcpn7UNeHCEWPFqnMLPo+afyYSwjHBcT8TAVBfgP//RmdFsPhS3wJ2soS7iYwzrsn08D1ilsWcf+reoO6P+RuM=; Path=/; Domain=.yandex.ru; Expires=Sun, 06-Oct-2024 22:28:41 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 07 Oct 2022 23:28:41 GMT
x-yandex-req-id: 1665181721982350-3796205706079930841-vla1-3092-vla-l7-balancer-8080-BAL-2124
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash bddc50e9d6408e3474cfde0779966d85
86e2a976d0fc3024ee6aabfc97e808080cfc485e
a354bc87255461885793da5f2fecb8d5507477faae6daf397492d417e4ddf5b3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 11 Oct 2022 19:30:56 GMT
ETag: "86e2a976d0fc3024ee6aabfc97e808080cfc485e"
Last-Modified: Fri, 07 Oct 2022 19:30:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3565
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a12445d190b55-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash bddc50e9d6408e3474cfde0779966d85
86e2a976d0fc3024ee6aabfc97e808080cfc485e
a354bc87255461885793da5f2fecb8d5507477faae6daf397492d417e4ddf5b3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 11 Oct 2022 19:30:56 GMT
ETag: "86e2a976d0fc3024ee6aabfc97e808080cfc485e"
Last-Modified: Fri, 07 Oct 2022 19:30:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3565
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a12445837b4eb-OSL
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.216200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Mon, 07 Oct 2052 05:03:06 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/662848/3521127290410543dbe9.js
178.154.131.216200 OK 4.6 kB URL HTTP/2 yastatic.net/partner-code-bundles/662848/3521127290410543dbe9.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (13670), with no line terminators
Hash 2608153af020534eac1710bcf8245ae2
5138177c4fe4df885e3f48a626dfc7b7138f9aca
b151d30855f6d8a51927b939a9f7e73abc0ede0b1543570ccefc88963907ffda
GET /partner-code-bundles/662848/3521127290410543dbe9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/javascript; charset=utf-8
content-length: 4579
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "2608153af020534eac1710bcf8245ae2"
expires: Mon, 07 Oct 2052 05:02:02 GMT
last-modified: Thu, 06 Oct 2022 18:06:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5690c00c386c753af6de22646db06434
aa5b0574bf8aa58bc5608d593e7dcba23100b454
741af8ab8cb30aac3a08fe0ae823577cb602c717416f9bcd52cef5b830b5fb0e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 18:25:20 GMT
Expires: Thu, 13 Oct 2022 18:25:19 GMT
Etag: "aa5b0574bf8aa58bc5608d593e7dcba23100b454"
Cache-Control: max-age=503196,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756a12445dacb523-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8f914c75d78aabd8f442473c89339139
65f9275088f83adaabf31e48c76de615ceaf238d
e609b19f355624c89679e3029f5f54f6c1b0398d8b13aae97c6d11b2598dee66
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 12:52:20 GMT
Expires: Thu, 13 Oct 2022 12:52:19 GMT
Etag: "65f9275088f83adaabf31e48c76de615ceaf238d"
Cache-Control: max-age=483216,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 756a12436e8fb4e8-OSL
yastatic.net/partner-code-bundles/662848/b4759d5bba5d27841e8e.js
178.154.131.216200 OK 19 kB URL HTTP/2 yastatic.net/partner-code-bundles/662848/b4759d5bba5d27841e8e.js
IP 178.154.131.216:0
File type HTML document, ASCII text, with very long lines (65159)
Hash 3172e4b3db5fe022d49a4d3cda82b591
064249a0c348d5f35acf77b91e665fe9e28f1942
98d61c8e15d080794f7bd0e9b74b810763c3fecec7e4a0d40834b0eeec75bcb4
GET /partner-code-bundles/662848/b4759d5bba5d27841e8e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/javascript; charset=utf-8
content-length: 19053
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3172e4b3db5fe022d49a4d3cda82b591"
expires: Mon, 07 Oct 2052 05:02:02 GMT
last-modified: Thu, 06 Oct 2022 18:06:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
bedrapiona.com/5/5118524/?oo=1&js_build=iclick-v1.434.0
139.45.197.234200 OK 98 kB URL HTTP/2 bedrapiona.com/5/5118524/?oo=1&js_build=iclick-v1.434.0
IP 139.45.197.234:0
Hash a21e7cabc9c7b41b4570ac570a40e7ca
fd7c00bd39833b551050c77c61c6165a4d13769a
54a63aff158587bf5e6cf596a862b0a7ca88e19429d50f490d94927e3b4f8fd3
GET /5/5118524/?oo=1&js_build=iclick-v1.434.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: application/json
x-trace-id: 815cf855e40ed8fbff1f8b144ba353ed
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=682f6f8ec7fb4c579a50375e184fe06c; expires=Sat, 07 Oct 2023 22:28:41 GMT; path=/; secure; SameSite=None
oaidts=1665181721; expires=Sat, 07 Oct 2023 22:28:41 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 1e7548e69922fd4d1df5f326a2ada094
8d6eb49f138fbeae1d1f53dc90110fda8e6ea669
67a07f139b0d2ef95e2133cb252ace7f1ff1475f3faae3959e5f587c59054ba6
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://gotovotvet.com
Content-Length: 1553
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 07 Oct 2022 22:29:05 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://gotovotvet.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
yastatic.net/partner-code-bundles/662848/5c28993f970fd8eae4b7.js
178.154.131.216200 OK 3.3 kB URL HTTP/2 yastatic.net/partner-code-bundles/662848/5c28993f970fd8eae4b7.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (8144)
Hash 3a5a56de8aa0bd64fdc94fee05ffcebc
6c747ab88cac88f3ff76f90ea3ea33f0d8fedb02
da88f25e2d88d327f7c2efd4bcc74c6b63300a738a6729312aef61e46d8c02ba
GET /partner-code-bundles/662848/5c28993f970fd8eae4b7.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/javascript; charset=utf-8
content-length: 3341
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3a5a56de8aa0bd64fdc94fee05ffcebc"
expires: Mon, 07 Oct 2052 05:02:32 GMT
last-modified: Thu, 06 Oct 2022 18:06:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 04c02c3ecb080eba42b7f68a6a78e8df
5ec8160169c657acdb1bc4120ff2068798aaa692
ad12711330c6450bd567340fdcfd5ccf69a2c9039f35652aaac48cf104d8935d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD12711330C6450BD567340FDCFD5CCF69A2C9039F35652AAAC48CF104D8935D"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7478
Expires: Sat, 08 Oct 2022 00:33:20 GMT
Date: Fri, 07 Oct 2022 22:28:42 GMT
Connection: keep-alive
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.216200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.216:0
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Sun, 08 Oct 2023 04:13:51 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 1082d9a9a8c3e358
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fc6e32a9394f5288feb5e12812de6d7c
601260fd4644bca742ddcd19a910a4854280cf58
5ef06c31a9f400bc900b49e50d16f581891f9cf89ef86d93b0f8859ecf62febe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EF06C31A9F400BC900B49E50D16F581891F9CF89EF86D93B0F8859ECF62FEBE"
Last-Modified: Thu, 06 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=962
Expires: Fri, 07 Oct 2022 22:44:44 GMT
Date: Fri, 07 Oct 2022 22:28:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c60838436a2544df8905a92216bea8ee
86847955c719ee3d1533ceccfaa7501470bc5406
2a1b457dc34404417c6c649420a5a5c79ad54fb89cf65c3b59d1c9e358dc43ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A1B457DC34404417C6C649420A5A5C79AD54FB89CF65C3B59D1C9E358DC43BA"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8505
Expires: Sat, 08 Oct 2022 00:50:27 GMT
Date: Fri, 07 Oct 2022 22:28:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 966c3031e485ede683e6d3a60e394062
8e0d0284287e797890dbe611c7a62e7f101d1684
392c591a8f522a1b18b5b4d9d017bcee661d0679d4c55c940e3692c13b48e700
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "392C591A8F522A1B18B5B4D9D017BCEE661D0679D4C55C940E3692C13B48E700"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4473
Expires: Fri, 07 Oct 2022 23:43:15 GMT
Date: Fri, 07 Oct 2022 22:28:42 GMT
Connection: keep-alive
loajawun.com/500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/2 loajawun.com/500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: loajawun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
178.154.131.216200 OK 6.3 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
IP 178.154.131.216:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23297)
Hash eb77de48712912aadc9aa8171ac75ede
f375e4ed6b585c4e30b2d56f4f41c3beed909349
437ee0c22002ccd77158d7a7018113f26384324158ab3cef65373007f29b1bcf
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Mon, 07 Oct 2052 05:03:45 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
betotodilea.com/400/5124801
139.45.197.237200 OK 32 kB URL HTTP/2 betotodilea.com/400/5124801
IP 139.45.197.237:0
Hash 561be9ac11c07f3ef2f9972d6013e69e
cee411269eb500b88c8a33c7cee35de70ef84ed7
7807f054b688619c11991ba3a40727d60fd2604d4d7010193bc5f6a5e3cadc99
GET /400/5124801 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: application/javascript
x-trace-id: 4059ce389f93c591eba3e1083eff3d63
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=52101c9aef15449dbc7611ee2d924ba2; expires=Sat, 07 Oct 2023 22:28:42 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
propu.sh/pfe/current/tag.min.js?z=5118523
139.45.197.250200 OK 6.0 kB URL HTTP/2 propu.sh/pfe/current/tag.min.js?z=5118523
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (14782), with no line terminators
Hash 6e0cf09db28308bf0194d8f1915fe636
34cd8293734c4e70a28c254e8b9e24ff55f254a9
36e9e873e600f5ef45efd5c6ddec569f97b957ab928fec9b933469bc115f4ca9
Analyzer Verdict Alert fortinet Phishing
GET /pfe/current/tag.min.js?z=5118523 HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:19:37 GMT
etag: W/"6332f869-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
offerimage.com/www/images/3ef316842349308dfa69b2337a1f2f26.png
172.67.22.216200 OK 97 kB URL HTTP/2 offerimage.com/www/images/3ef316842349308dfa69b2337a1f2f26.png
IP 172.67.22.216:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ef316842349308dfa69b2337a1f2f26
cfb295c74af7d2432c8f0dde1819e1aa35b2ab89
88d7d3964d36d102797d185fb23dab82ac6142c12a5119497b95d2dc018c5bcd
GET /www/images/3ef316842349308dfa69b2337a1f2f26.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: image/png
content-length: 96644
last-modified: Thu, 10 Jun 2021 16:38:57 GMT
etag: "60c24021-17984"
expires: Sat, 08 Oct 2022 21:09:37 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 4742
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 756a1247e9460b41-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash d2c9de3dc1885e996800e17eba44081e
bd5d1f4fdac31cebf0c4e4adf62d5340eb358eb7
023c056b6cc8198a7e65d6fcc83f01b627fbfef026a5c5acda28919623f4efc5
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 11 Oct 2022 20:48:00 GMT
ETag: "bd5d1f4fdac31cebf0c4e4adf62d5340eb358eb7"
Last-Modified: Fri, 07 Oct 2022 20:48:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3491
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a12485f930b55-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash b15f1092ce5389606c46a5677fa06136
b1a840c83bdd1cb39e5ee4c6b81c6a7621c83597
36b6b3921442bb9762ecce331ad48e58442fbe449d403a996bb71d3cadcdc628
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Tue, 11 Oct 2022 19:24:25 GMT
ETag: "b1a840c83bdd1cb39e5ee4c6b81c6a7621c83597"
Last-Modified: Fri, 07 Oct 2022 19:24:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1637
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 756a12488d66b4eb-OSL
ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
87.250.250.114200 Ok 95 B URL HTTP/1.1 ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
IP 87.250.250.114:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 60cf42b4d05caf10cf8bb15c0817a7b4
bd269860bb508aebcb6f08fe7289d5f117830383
18c327afa903633f86c3efcf12b77f098077eacaa8be101bb007846fd74f8b93
GET /static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes HTTP/1.1
Host: ysa-static.passport.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Server: nginx/1.14.2
Date: Fri, 07 Oct 2022 22:28:42 GMT
Content-Type: image/png
Content-Length: 95
Connection: close
Cache-Control: private
Expires: Sat, 08 Oct 2022 22:28:42 GMT
X-RT-IQ: 0.0002
X-RT-IH: 0.0002
Strict-Transport-Security: max-age=315360000; includeSubDomains
nanouwho.com/9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d
139.45.197.242204 No Content 0 B URL HTTP/2 nanouwho.com/9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
propu.sh/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
OPTIONS /custom HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
propu.sh/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
OPTIONS /custom HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash 460146be452f208c1f6522551302a015
b0fa6e22cabc464df86ead41b64ef8611f0a2864
79cc70749200e05b4080f11d05ff2e544e15f4fd2571013619f0f3d88e0c28ea
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57462
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: *
etag: "633fab48-e076"
expires: Fri, 07 Oct 2022 23:28:43 GMT
last-modified: Fri, 07 Oct 2022 07:30:00 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
propu.sh/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Phishing
POST /custom HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Content-Type: application/json
Origin: https://gotovotvet.com
Content-Length: 408
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 357a21ee4cba3b7cde77e1a9c7ed6440
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
propu.sh/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Phishing
POST /custom HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Content-Type: application/json
Origin: https://gotovotvet.com
Content-Length: 789
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 5d6ec394b3c2b067730a8f8a02b38517
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
nanouwho.com/9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d
139.45.197.242200 OK 2.7 kB URL HTTP/2 nanouwho.com/9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d
IP 139.45.197.242:0
File type JSON data\012- , ASCII text, with very long lines (6342), with no line terminators
Hash 4fe32b996adb2d6b16b1af1832d2bd27
3b39a600d55f79f7375a521585e2654e9648b766
ad3c53309782374711fed1e3e1d53d35bb3f6d18f74c5a60b94a41c10bc310a9
POST /9?z=5118522&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=bca8937b41d848c2bf1e652cf67ea92d HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 126
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Cookie: scm=1; OAID=980f08c4f3c443d794bdaac34562eac1; oaidts=1665181722
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4597e0e6b57ad5d4245b366673ae6896
access-control-expose-headers: X-Sc
set-cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:43 GMT; secure; SameSite=None
oaidts=1665181722; expires=Sat, 07 Oct 2023 22:28:43 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
betotodilea.com/500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4f02499111f3797c5a096e9f9a23f37c
19daaa3d50e5acd25ec41242b0bedf54a9dd5a37
8158e4bd8ad6b27907098b5e0e958152f08f95ec1f99d3f31f3d5f49038e865e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8158E4BD8AD6B27907098B5E0E958152F08F95EC1F99D3F31F3D5F49038E865E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7590
Expires: Sat, 08 Oct 2022 00:35:13 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2290
Expires: Fri, 07 Oct 2022 23:06:53 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2290
Expires: Fri, 07 Oct 2022 23:06:53 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2290
Expires: Fri, 07 Oct 2022 23:06:53 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2290
Expires: Fri, 07 Oct 2022 23:06:53 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f930414-193c-40b3-9ede-82dcc34798da.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f930414-193c-40b3-9ede-82dcc34798da.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 761eacc5155a05c070d06dae3c56e824
5142109da128754d55412915f29b853e6473e7b1
04d4acd58bb76eacfa038e9c8f143e7051931ac2c91e088a3929503d6443fe98
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f930414-193c-40b3-9ede-82dcc34798da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13972
x-amzn-requestid: 37a983be-a598-46a5-89c2-20a91c4c665d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1DrFHBoAMFZAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb0-20ff89497af2bda30d3314ff;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VXDOXFwJ2gxNAsRT5h0CEdTwCQlVZkn7YX1fphtdZBAYwFjmOA_SgQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:35:45 GMT
age: 3178
etag: "5142109da128754d55412915f29b853e6473e7b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1041925-265b-4093-b21c-f5f8ad151730.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1041925-265b-4093-b21c-f5f8ad151730.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 071246ed5afd2f115dd9285207fa2a9b
05de223461a8b25fb222bb0abe45b283a2a25e9a
baea9d06d341b9d6bef4437869e66011275424f26ca503368a3fba2596cf49c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1041925-265b-4093-b21c-f5f8ad151730.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6355
x-amzn-requestid: e6a1f911-789f-443a-a30d-f83d4b08f1db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1DlHrhIAMFisw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb0-70791dd7223ac5b600af0240;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yV6PUsJG0nBbCAHTSmlDMRxKDirDlwOhiwmb5AHKbWeCIO4TVen3uw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:22 GMT
age: 3081
etag: "05de223461a8b25fb222bb0abe45b283a2a25e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecedcddd-85d8-43d3-a9b6-2c201493ab3f.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecedcddd-85d8-43d3-a9b6-2c201493ab3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3fba664205cc4f4c47441384bb9baff
7388d4c0ebd1f5ee0434315d0bf0ba324235b8ca
5336cbc9f49699990c607bfb64265f55425f0c994d1c880d71e4faefd26057a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecedcddd-85d8-43d3-a9b6-2c201493ab3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10302
x-amzn-requestid: 10724d90-3561-4b3a-9faa-2ecfd573b3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1EKGUVoAMF0cQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409bb4-76637f427b13d2c506fd5ccf;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1rwq9VVxiIBmFjb6TUwaGdXIH6zqzTGEaJz3MW9fnU3VCGty50sLSA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:47:42 GMT
age: 2461
etag: "7388d4c0ebd1f5ee0434315d0bf0ba324235b8ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iClOZEPMiFmpeprT8McJ2HI0dCmyxkhEdfYr0qP0YK3U_Pcd9N0Fhg==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 11:08:01 GMT
age: 40842
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd896261-9493-4c72-a9b3-64a81ba25575.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd896261-9493-4c72-a9b3-64a81ba25575.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392365031bf04a5e34788912f1cd897d
57b8d5510c7b7d7fe1aa5238d507e965643a9fa2
718b47a31956edadedfa54e3c12211c1f56e8426bc9a1e7aba1c31fd4517be09
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd896261-9493-4c72-a9b3-64a81ba25575.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11856
x-amzn-requestid: 573e90f9-19d6-4802-ae8f-f37542c9c2bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp2BeHA3IAMF4Gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409d3c-015e52305f282bfb6abc28bf;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:42:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WJzjDikXAjF_HFLpLrInz9IxSELQXUaIXTGwz-FQny8l8KKE30A2ww==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:53:06 GMT
age: 2137
etag: "57b8d5510c7b7d7fe1aa5238d507e965643a9fa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80ea69a5-f119-4320-8a89-eaa422dade08.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80ea69a5-f119-4320-8a89-eaa422dade08.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55147b91b97ad22c45c980671947f39c
cebb1cf36cf6b4a0209cd8f4989b8f5168e2a59c
ca84bb5317079b510de8e83c6c17b715dc5e0c3ec27ef7ead9f03fbcfe3d2b44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80ea69a5-f119-4320-8a89-eaa422dade08.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: 38c08aa2-1085-42b7-803c-73d87f28b6cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AjEF6IAMFkLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed0-413a197b3d45bd916588196b;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J7myCPUqf_CObucnOeOSbw5x8sPsIVDNWbjpcEgdL7x-kY-ViNnEsg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:50:33 GMT
age: 2290
etag: "cebb1cf36cf6b4a0209cd8f4989b8f5168e2a59c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg
139.45.197.152200 OK 20 kB URL HTTP/2 interstitial-07.com/contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg
IP 139.45.197.152:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 256x256, components 3\012- data
Hash f533c93ff5b28ce50b1e6b9a5843d9f4
5483d2e7294716667f86cb07ad337e7b54409484
8037f98d491aa24e53a11eadf7cdc588d4a134b289955acca1f298379702ce81
GET /contents/s/f5/33/c9/3ff5b28ce50b1e6b9a5843d9f4/0744334562399.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=5KiJw7BDBzgssAn&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D3796323203%26z%3D5118522%26b%3D14505326%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D34a04160-60f5-420b-9860-9be7f15c17ef%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgotovotvet.com%252Fmegamozg%252F%253Furl%253D%252Finformatika%252Fquestion40922602%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: image/jpeg
content-length: 20112
last-modified: Wed, 19 Jan 2022 15:54:56 GMT
etag: "61e83450-4e90"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 409f7331aeb715226c7cea82376d55b4
d6cbd40fc418d6fd9b47065c3a13f96f9fd9e5f8
7c7ec5c88c3e4c5ba295f30733567b68e1fec4d202d04264aa78a15b4eab4a37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EC5C88C3E4C5BA295F30733567B68E1FEC4D202D04264AA78A15B4EAB4A37"
Last-Modified: Fri, 07 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19972
Expires: Sat, 08 Oct 2022 04:01:35 GMT
Date: Fri, 07 Oct 2022 22:28:43 GMT
Connection: keep-alive
interstitial-07.com/contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg
139.45.197.152200 OK 52 kB URL HTTP/2 interstitial-07.com/contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg
IP 139.45.197.152:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash 5e9b98c047812bb48d9b12a9d78bb7ba
a55f54b8b3cc2cc1a76e9a13979e007961d59fa4
7410b691e0099ec4f7bf23af1234f23e6823b0fa973366ccb472844c4b782fdd
GET /contents/s/5e/9b/98/c047812bb48d9b12a9d78bb7ba/0865874287824.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=5KiJw7BDBzgssAn&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D3796323203%26z%3D5118522%26b%3D14505326%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D34a04160-60f5-420b-9860-9be7f15c17ef%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgotovotvet.com%252Fmegamozg%252F%253Furl%253D%252Finformatika%252Fquestion40922602%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: image/jpeg
content-length: 51805
last-modified: Wed, 19 Jan 2022 15:54:55 GMT
etag: "61e8344f-ca5d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1959042/1?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/1959042/1?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 70cc10bc8897ba73a6beb46bcb85d563
0667c923f0f4865350c0eee69734696366dd0fbd
b620945010303177befac4b84df20086f7d4f9658b1911433e34ad92baf98f45
GET /watch/1959042/1?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Referer: https://gotovotvet.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Fri, 07 Oct 2022 22:28:43 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:43 GMT
last-modified: Fri, 07-Oct-2022 22:28:43 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1959042?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 43 B URL HTTP/2 mc.yandex.ru/watch/1959042?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/1959042?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/1959042/1?wmode=7&page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A138334309%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: https://gotovotvet.com
set-cookie: yandexuid=5903614331665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5903614331665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1560355191665181723; Path=/; SameSite=None; Secure
i=LbH7+WVRZuwL3iQ7dM5Hs9gJAizuFJ7W7HqtOli1v6lp1yOxMLNSObX0HKvPq7rANDZsQ3x4+Dyrl9jemMaGLpcr89U=; Expires=Mon, 04-Oct-2032 22:28:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696717723.yrts.1665181723#1696717723.yrtsi.1665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:43 GMT
last-modified: Fri, 07-Oct-2022 22:28:43 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: a88f831f1f7e0eb36c54e980edc97a9a
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
nanouwho.com/11?rnd=2776467059&z=5118522&b=14505326&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g==&ruid=34a04160-60f5-420b-9860-9be7f15c17ef&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.242200 OK 0 B URL HTTP/2 nanouwho.com/11?rnd=2776467059&z=5118522&b=14505326&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g==&ruid=34a04160-60f5-420b-9860-9be7f15c17ef&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=2776467059&z=5118522&b=14505326&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=ggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g==&ruid=34a04160-60f5-420b-9860-9be7f15c17ef&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Cookie: scm=1; OAID=bca8937b41d848c2bf1e652cf67ea92d; oaidts=1665181722
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: be53feae50fba4220a866dc328f2639a
access-control-expose-headers: X-Sc
set-cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:43 GMT; secure; SameSite=None
oaidts=1665181722; expires=Sat, 07 Oct 2023 22:28:43 GMT; secure; SameSite=None
oaidvc=1; expires=Sat, 07 Oct 2023 22:28:43 GMT; secure; SameSite=None
CNT=1_v1_blXdAAEAAABISwAA; expires=Fri, 07 Oct 2022 23:28:43 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1959042/1?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/1959042/1?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/1959042/1?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Referer: https://gotovotvet.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:43 GMT
last-modified: Fri, 07-Oct-2022 22:28:43 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 0b4f3ef00914a12bd98c30d022271f7d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
yastatic.net/q/set/s/rsya-tag-users/bundle.js
178.154.131.216200 OK 94 kB URL HTTP/2 yastatic.net/q/set/s/rsya-tag-users/bundle.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 982b5bd3281f658759d47324dd92b61b
61a831563be71c7c1915fa46463062c3e2362d8e
6d8f7e252b65595e4a8c71c93db6e8acd2bea9ffc3dbd8ee4a1d8da79c709bf0
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 07 Oct 2022 22:28:44 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"82bdc8db563d3e71c35534315f8a9fd5"
expires: Mon, 10 Oct 2022 10:26:05 GMT
last-modified: Fri, 29 Oct 2021 11:19:01 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: ddc418258bc370a8
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 448c151bd351f7433f3b5d3f82e6c60b
fac211353db3bc40a2eb849fbc8624cefe1ea80d
62004580d8ec91ca84d4a9e296abd868d685922bcaa811209dcceb0b7574eff2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 448c151bd351f7433f3b5d3f82e6c60b
fac211353db3bc40a2eb849fbc8624cefe1ea80d
62004580d8ec91ca84d4a9e296abd868d685922bcaa811209dcceb0b7574eff2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 448c151bd351f7433f3b5d3f82e6c60b
fac211353db3bc40a2eb849fbc8624cefe1ea80d
62004580d8ec91ca84d4a9e296abd868d685922bcaa811209dcceb0b7574eff2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 448c151bd351f7433f3b5d3f82e6c60b
fac211353db3bc40a2eb849fbc8624cefe1ea80d
62004580d8ec91ca84d4a9e296abd868d685922bcaa811209dcceb0b7574eff2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0
142.250.74.130302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY7OzN4qY78EPnZCWiAk&random=1157419375&sscte=1&crd=CJqqsQI
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
142.250.74.130302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY924N_KS78EP1KGxuAk&random=749747912&sscte=1&crd=CJqqsQI
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion_async.js
142.250.74.130200 OK 15 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (1654)
Hash 3f6af00987331c2127d76c53ad1e07cb
4cd4976eb4921e3bd9a96b6a2a29b17251de939b
4ea0a9748c3e5fe15fc2ae185f43e6928db62b8b2250c3b4df092737938168c1
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 07 Oct 2022 22:28:44 GMT
expires: Fri, 07 Oct 2022 22:28:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 699633608045481581
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15192
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 07 Oct 2022 22:28:44 GMT
access-control-allow-origin: *
etag: "633fab48-2b"
expires: Fri, 07 Oct 2022 23:28:44 GMT
accept-ranges: bytes
last-modified: Fri, 07 Oct 2022 07:30:00 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed614138648c241dfe36593a86955126
d481d3eef07867f1625b6668608f1c95490d9df5
cdf207d58794e9f1b514b9d514ef4abae5cfb5d1d70de63420f0529e048ebadd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
93.158.134.119200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6a355e9920fe46b9f1c28ec7c9e0f59e
82759204e20cf6202c5a65a02a9edaf107cdcd02
4c64845c4c4abd87c948a69c596302b04694cde00c663b3f175cc43879da31fd
GET /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Fri, 07 Oct 2022 22:28:44 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:44 GMT
last-modified: Fri, 07-Oct-2022 22:28:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY7OzN4qY78EPnZCWiAk&random=1157419375&sscte=1&crd=CJqqsQI
142.250.74.98302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY7OzN4qY78EPnZCWiAk&random=1157419375&sscte=1&crd=CJqqsQI
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY7OzN4qY78EPnZCWiAk&random=1157419375&sscte=1&crd=CJqqsQI HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY924N_KS78EP1KGxuAk&random=749747912&sscte=1&crd=CJqqsQI
142.250.74.98302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY924N_KS78EP1KGxuAk&random=749747912&sscte=1&crd=CJqqsQI
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=HKhAY924N_KS78EP1KGxuAk&random=749747912&sscte=1&crd=CJqqsQI HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1665181724941&cv=9&fst=1665181724941&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1665181724941&cv=9&fst=1665181724941&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2610), with no line terminators
Hash 472338d11d1070cdf36d29401f4fa453
e3e1d3660b299d4e94e340b418c940bda1490887
d3f998d9d7859df91f1d960077fe253c44d55ce5d622713c696babd968a283d5
GET /pagead/viewthroughconversion/947884341/?random=1665181724941&cv=9&fst=1665181724941&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1121
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1665181724950&cv=9&fst=1665181724950&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1665181724950&cv=9&fst=1665181724950&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2612), with no line terminators
Hash 3cc144c1deb61468fcefc5239289eb65
36d56f744b821ba57388b4f039493c99a7fbf172
93da53b8b7e7918017ba0af4cab429659163827ecf8579b64d6b887b802edec9
GET /pagead/viewthroughconversion/693627671/?random=1665181724950&cv=9&fst=1665181724950&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1121
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1665181724944&cv=9&fst=1665181724944&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/693627671/?random=1665181724944&cv=9&fst=1665181724944&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2612), with no line terminators
Hash dc587b1e56598a161666f611f2605f4c
57dfca3ff264e59576e6cde7561f3bf7752aa702
f21b7730fa0971dbb548158a77f9b1145e7c6cfe49eca0335fb9b63610706ffb
GET /pagead/viewthroughconversion/693627671/?random=1665181724944&cv=9&fst=1665181724944&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1121
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1665181724948&cv=9&fst=1665181724948&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/947884341/?random=1665181724948&cv=9&fst=1665181724948&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2610), with no line terminators
Hash 1319c4c623e63f47f2e6852e46bb88dd
6b614ea96ddd7dd58b6f4d7c0bd59f3d7971aa94
321ceefa4e7e1744329bcab5573345557103aa306c6ed1f3e9e1580820ff6d19
GET /pagead/viewthroughconversion/947884341/?random=1665181724948&cv=9&fst=1665181724948&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1121
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 07-Oct-2022 22:43:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 566f7dcd2bca44af237f10a30677ebf3
99643e4e1afa54eb1e406ca1e6b94a69b3c44ec6
3f99044a54114bb01809e4d34fea41d6a18ce9c3b90c69fd86e8b44a1539866d
GET /watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Fri, 07 Oct 2022 22:28:45 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:45 GMT
last-modified: Fri, 07-Oct-2022 22:28:45 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 472 B URL HTTP/2 mc.yandex.ru/watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
Hash da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa
GET /watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A2%3Adp%3A0%3Als%3A823956468649%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222845%3Aet%3A1665181725%3Arn%3A980999711%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181725%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Fri, 07 Oct 2022 22:28:45 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yandexuid=2943466921665181725; Expires=Sat, 07-Oct-2023 22:28:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2943466921665181725; Expires=Sat, 07-Oct-2023 22:28:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1419834511665181725; Path=/; SameSite=None; Secure
i=6wRnLxPc5SnQp7c415jpRHi14W9lBndTlIZ+nyy/MUy3v3Yg9i0KaizGa8ZnHB6k0/5y6vYkcG4ToWnfCuOZRxNqQNE=; Expires=Mon, 04-Oct-2032 22:28:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696717725.yrts.1665181725#1696717725.yrtsi.1665181725; Expires=Sat, 07-Oct-2023 22:28:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:45 GMT
last-modified: Fri, 07-Oct-2022 22:28:45 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1665181724941&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=372602859&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1665181724948&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=269405872&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1665181724948&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=269405872&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1665181724948&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=269405872&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1665181724950&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2378925892&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1665181724944&cv=9&fst=1665180000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgotovotvet.com%2F&async=1&fmt=3&is_vtc=1&random=2550881255&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yandex.ru/set/s/rsya-tag-users/data?referrer=https%3A%2F%2Fgotovotvet.com%2F
5.255.255.5200 OK 302 B URL HTTP/2 yandex.ru/set/s/rsya-tag-users/data?referrer=https%3A%2F%2Fgotovotvet.com%2F
IP 5.255.255.5:0
Hash f2203fdaec7f5bebbf39827d36b3d4f3
92113f0d80de5e7bc25b3bec19bbae5d4a14ebd2
2f1a0d079dbeed616f7422b9ecfa6d62d1c042065de69c80e10dd16bedc1adb6
GET /set/s/rsya-tag-users/data?referrer=https%3A%2F%2Fgotovotvet.com%2F HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Origin: https://yastatic.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 07 Oct 2022 22:28:44 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Sun, 06 Oct 2024 22:28:44 GMT; SameSite=None; Secure
is_gdpr_b=COvZDxCpjgEYAQ==; Path=/; Domain=.yandex.ru; Expires=Sun, 06 Oct 2024 22:28:44 GMT; SameSite=None; Secure
_yasc=b+UoWcDeN8PATQGL53QUT6//3kVQg93R0vve+pp/zyiaaH5F; domain=.yandex.ru; path=/; expires=Sun, 06-Nov-2022 22:28:44 GMT; secure
i=E7cU57yPemKoBVpnvYMroffWhbtoaJyEOYEy++9ruh5lT+KNidyHEhGxskkh00T4+pC+AuM0c0eNxHSzzGMQ51CRx64=; Expires=Sun, 06-Oct-2024 22:28:44 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: public,max-age=300
content-encoding: gzip
content-type: application/json; charset=utf-8
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1157419375&crd=CJqqsQI&is_vtc=1&random=3151734262&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 74b63831a0a449c3e37b584db0009072
929f9f036c4a6a078c51c3b3dc2a7f902c9ee9ac
686845b4cf9a67078f03cb221ce13175a72074f6aa3804ba4fa06623ab856bae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 22:28:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=749747912&crd=CJqqsQI&is_vtc=1&random=822556891&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 07 Oct 2022 22:28:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
betotodilea.com/impression/rUW2lYtj9VGh1sG5EMRix3TpfxHQx927ZWy-ATIl23s4ExalkMLlDkGWgAzJa_bUNwlls2Yqki-d0AoFmzcq2IBjN0gUniDfr9CgY1dbt9B2uI8UY3WC-dY7eWmjU-T1i2_30dG2eQ-yUqyqy5u4G2I8Ht9v0EXUSRj74BeaUVyWtJMtFPUECNySJVjieSnKlyfP_eLw6DZdbPppYfmGm9QFQ6wGi97Q-BxKPLDp5zWqghtY1PehyRqZy0QxOYHoQVYgj4AAQqv648KNC7JCvll4UCvNhbT6JEut2FPE9DY4p2Mzcrhbb_v54mQyZpxaMSY-vbZwCEKun1wN3PJa-l4bkKDikkly-0le_aOYHxogtBKl-CoA-t7mMAwc_Wqq3erI8LPCb7KB1ZwJtlMfiSDZZHOICI_b95tWiAg2gCM2hFIF-qHpgj2TCStGcr1C6oMWylSoGg4sk2NupprQlo5ouO4lb0xvNO0KvdQD6OAn2tLBKrRvJi7sqfXt-S5Ec8ftyEnQzrRiWvBVQfxNrhVb3-mEQ52w-40LFZNOJnl3yIejWtyHXOsEscDx50n1ab3rXqHLAEGNJRa_Cr951H05ow5YZeuB?_z=5124801&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 43 B URL HTTP/2 betotodilea.com/impression/rUW2lYtj9VGh1sG5EMRix3TpfxHQx927ZWy-ATIl23s4ExalkMLlDkGWgAzJa_bUNwlls2Yqki-d0AoFmzcq2IBjN0gUniDfr9CgY1dbt9B2uI8UY3WC-dY7eWmjU-T1i2_30dG2eQ-yUqyqy5u4G2I8Ht9v0EXUSRj74BeaUVyWtJMtFPUECNySJVjieSnKlyfP_eLw6DZdbPppYfmGm9QFQ6wGi97Q-BxKPLDp5zWqghtY1PehyRqZy0QxOYHoQVYgj4AAQqv648KNC7JCvll4UCvNhbT6JEut2FPE9DY4p2Mzcrhbb_v54mQyZpxaMSY-vbZwCEKun1wN3PJa-l4bkKDikkly-0le_aOYHxogtBKl-CoA-t7mMAwc_Wqq3erI8LPCb7KB1ZwJtlMfiSDZZHOICI_b95tWiAg2gCM2hFIF-qHpgj2TCStGcr1C6oMWylSoGg4sk2NupprQlo5ouO4lb0xvNO0KvdQD6OAn2tLBKrRvJi7sqfXt-S5Ec8ftyEnQzrRiWvBVQfxNrhVb3-mEQ52w-40LFZNOJnl3yIejWtyHXOsEscDx50n1ab3rXqHLAEGNJRa_Cr951H05ow5YZeuB?_z=5124801&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/rUW2lYtj9VGh1sG5EMRix3TpfxHQx927ZWy-ATIl23s4ExalkMLlDkGWgAzJa_bUNwlls2Yqki-d0AoFmzcq2IBjN0gUniDfr9CgY1dbt9B2uI8UY3WC-dY7eWmjU-T1i2_30dG2eQ-yUqyqy5u4G2I8Ht9v0EXUSRj74BeaUVyWtJMtFPUECNySJVjieSnKlyfP_eLw6DZdbPppYfmGm9QFQ6wGi97Q-BxKPLDp5zWqghtY1PehyRqZy0QxOYHoQVYgj4AAQqv648KNC7JCvll4UCvNhbT6JEut2FPE9DY4p2Mzcrhbb_v54mQyZpxaMSY-vbZwCEKun1wN3PJa-l4bkKDikkly-0le_aOYHxogtBKl-CoA-t7mMAwc_Wqq3erI8LPCb7KB1ZwJtlMfiSDZZHOICI_b95tWiAg2gCM2hFIF-qHpgj2TCStGcr1C6oMWylSoGg4sk2NupprQlo5ouO4lb0xvNO0KvdQD6OAn2tLBKrRvJi7sqfXt-S5Ec8ftyEnQzrRiWvBVQfxNrhVb3-mEQ52w-40LFZNOJnl3yIejWtyHXOsEscDx50n1ab3rXqHLAEGNJRa_Cr951H05ow5YZeuB?_z=5124801&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=3&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:47 GMT
content-type: image/gif
content-length: 43
x-trace-id: 010be32ab27b69bcb308598acc5e851c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=6a52c2cc1fd448e9ba420f6fcade06be&zoneId=5118523&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=6a52c2cc1fd448e9ba420f6fcade06be&zoneId=5118523&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 1e7548e69922fd4d1df5f326a2ada094
8d6eb49f138fbeae1d1f53dc90110fda8e6ea669
67a07f139b0d2ef95e2133cb252ace7f1ff1475f3faae3959e5f587c59054ba6
GET /gid.js?pub=0&userId=6a52c2cc1fd448e9ba420f6fcade06be&zoneId=5118523&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Cookie: ID=bca8937b41d848c2bf1e652cf67ea92d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gotovotvet.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
propu.sh/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Phishing
POST /custom HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Content-Type: application/json
Origin: https://gotovotvet.com
Content-Length: 416
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 330d36f2be7ee96cd0a9cb39a6121adc
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
IP 93.158.134.119:0
GET /watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc(0-0-0)aw(1)rqnt(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgotovotvet.com%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A8lrqrbrm2kkwjok7410bw%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A1338011289025%3Ahid%3A203570897%3Az%3A0%3Ai%3A20221007222844%3Aet%3A1665181725%3Arn%3A470519472%3Arqn%3A1%3Au%3A1665181725668644058%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C14%2C1%2C%2C0%2C%2C88%2C0%2C358%2C358%2C1%2C120%3Ans%3A1665181722641%3Ast%3A1665181725&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
date: Fri, 07 Oct 2022 22:28:44 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yandexuid=3157372201665181724; Expires=Sat, 07-Oct-2023 22:28:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3157372201665181724; Expires=Sat, 07-Oct-2023 22:28:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1464703091665181724; Path=/; SameSite=None; Secure
i=9i6+27WU0UMIbIiRWvp1glg6O/eSZShRw3hkFbm3nIwN0aC2lE5ccpkAaLVDsV2zBVAumulFa+et7xEpuIV3IxUzXQ0=; Expires=Mon, 04-Oct-2032 22:28:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696717724.yrts.1665181724#1696717724.yrtsi.1665181724; Expires=Sat, 07-Oct-2023 22:28:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:44 GMT
last-modified: Fri, 07-Oct-2022 22:28:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
loajawun.com/400/5130382
139.45.197.238200 OK 0 B IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /400/5130382 HTTP/1.1
Host: loajawun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: application/javascript
x-trace-id: 6898d297ef609fa7ddc892c04900c828
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=a7d4d1562a6d4458942e4d6f0ca17f54; expires=Sat, 07 Oct 2023 22:28:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
nanouwho.com/1?z=5118522
139.45.197.242200 OK 0 B IP 139.45.197.242:0
GET /1?z=5118522 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 2fc0920ff2d7b077a44c9f0763421e3d
access-control-expose-headers: X-Sc
x-sc: 4r1n0d_fDfUDAmI1B_rMmLObSAtp7z-45je1-yDsdKCfnMFxfkfa6IHdIUirJsZ_KKaF3VYJOrJV3-1YGZs6nRrrI9E=
set-cookie: scm=1; expires=Sat, 07 Oct 2023 22:28:42 GMT; secure; SameSite=None
OAID=980f08c4f3c443d794bdaac34562eac1; expires=Sat, 07 Oct 2023 22:28:42 GMT; secure; SameSite=None
oaidts=1665181722; expires=Sat, 07 Oct 2023 22:28:42 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=1467933703
139.45.197.236200 OK 0 B URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=1467933703
IP 139.45.197.236:0
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=1467933703 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: b28b34b9427f660ee24727b1b0ceca06
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1959042?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/1959042?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
GET /watch/1959042?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/1959042/1?page-url=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&charset=utf-8&cnt-class=1&hittoken=1665181723_2ffe6f5e8a9717c2a02c21c31aa1d2fab6ce597f0b2deced1e92488d1f8bb18e&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A242227412894%3Ahid%3A612199268%3Az%3A0%3Ai%3A20221007222843%3Aet%3A1665181723%3Ac%3A1%3Arn%3A987436411%3Arqn%3A2%3Au%3A1665181723298653508%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1665181720649%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-dba15e5a86bf26086b9741390c9a43c0-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665181723%3At%3A%D0%9E%D1%82%D0%B2%D0%B5%D1%82%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD.%20%D0%9E%D0%B6%D0%B8%D0%B4%D0%B0%D0%B9%D1%82%D0%B5.&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
date: Fri, 07 Oct 2022 22:28:43 GMT
access-control-allow-origin: https://gotovotvet.com
set-cookie: yandexuid=3647443691665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3647443691665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1124521511665181723; Path=/; SameSite=None; Secure
i=gom1OAWYn3D8c1kFelScGS1uTYNlkt8r5Zw0Bdog4h/tAejCZquNEcOZM9aLN0dt2rx7BCxPx2Cvsw/+6LP56GfPYNM=; Expires=Mon, 04-Oct-2032 22:28:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696717723.yrts.1665181723#1696717723.yrtsi.1665181723; Expires=Sat, 07-Oct-2023 22:28:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 07-Oct-2022 22:28:43 GMT
last-modified: Fri, 07-Oct-2022 22:28:43 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
gotovotvet.com/megamozg/?url=/informatika/question40922602
104.21.41.181200 OK 0 B URL HTTP/2 gotovotvet.com/megamozg/?url=/informatika/question40922602
IP 104.21.41.181:0
GET /megamozg/?url=/informatika/question40922602 HTTP/1.1
Host: gotovotvet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=86400
expires: Sat, 08 Oct 2022 22:28:41 GMT
cf-cache-status: MISS
last-modified: Fri, 07 Oct 2022 22:28:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yau7quGnye7CUCkGbRUVTQeqm%2BeM9kluerK6qkRhMLuP4hPXFq31oNSbHK15GLaI24YFF3ZmNbWeyvOEC3e5T6MgU7OdOY8W%2Fn%2B%2B3V84a8%2BBeTsrVxNkmdIlpHQ%2FKL8eHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 756a123d782cb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.201%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=1927106481&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwio&p2=fqhi&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1
5.255.255.5200 OK 0 B URL HTTP/2 yandex.ru/ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.201%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=1927106481&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwio&p2=fqhi&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1
IP 5.255.255.5:0
GET /ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.201%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=1927106481&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwio&p2=fqhi&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://gotovotvet.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1665181722404789-18366223992760713015-vla1-3092-vla-l7-balancer-8080-BAL-9652
last-modified: Fri, 07 Oct 2022 22:28:42 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 07 Oct 2022 22:28:42 GMT
set-cookie: yandexuid=9034430291665181722; Path=/; Domain=.yandex.ru; Expires=Mon, 04-Oct-2032 22:28:42 GMT; SameSite=None; Secure
i=dUX0OVcxwP51xADknhqMpSq2KjtQZaMuGiy11eFrkQeKEAxh8/Z9K4QpwyacR+0l4X3CUuSL6LR+tIMyj3zDXWOIbpQ=; Path=/; Domain=.yandex.ru; Expires=Sun, 06-Oct-2024 22:28:42 GMT; SameSite=None; Secure; HttpOnly
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
ssr: true
expires: Fri, 07 Oct 2022 22:28:42 GMT
X-Firefox-Spdy: h2
onmarshtompor.com/?rb=QDNrXtdCmnT4eeFosDaAKmjNT7u7to42fhEuvtE02i_7y9X7owOBuSbAGUSYjHAZzn4ORB3biNPWjZmQ0aSnuvGMAfot5uc_CFn7qXl2JHT5kDqwnQUbkllVmhxU062G75rTNILtOxostifIZbtQw0dzl2JtHSrYMLs_DviOJmnE2wmOtVAghSB1Ad6LpAjr-MvnsrZ5VE2-_Ef9WdIrEVvvPoU%3D&request_ab2=0&zoneid=5118524&js_build=iclick-v1.434.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.434.0&bs=e3e7f01b-3e1b-4e6b-afd9-7eae4e7d3cbe&userId=bca8937b41d848c2bf1e652cf67ea92d&m=link
139.45.197.243200 OK 0 B URL HTTP/2 onmarshtompor.com/?rb=QDNrXtdCmnT4eeFosDaAKmjNT7u7to42fhEuvtE02i_7y9X7owOBuSbAGUSYjHAZzn4ORB3biNPWjZmQ0aSnuvGMAfot5uc_CFn7qXl2JHT5kDqwnQUbkllVmhxU062G75rTNILtOxostifIZbtQw0dzl2JtHSrYMLs_DviOJmnE2wmOtVAghSB1Ad6LpAjr-MvnsrZ5VE2-_Ef9WdIrEVvvPoU%3D&request_ab2=0&zoneid=5118524&js_build=iclick-v1.434.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.434.0&bs=e3e7f01b-3e1b-4e6b-afd9-7eae4e7d3cbe&userId=bca8937b41d848c2bf1e652cf67ea92d&m=link
IP 139.45.197.243:0
GET /?rb=QDNrXtdCmnT4eeFosDaAKmjNT7u7to42fhEuvtE02i_7y9X7owOBuSbAGUSYjHAZzn4ORB3biNPWjZmQ0aSnuvGMAfot5uc_CFn7qXl2JHT5kDqwnQUbkllVmhxU062G75rTNILtOxostifIZbtQw0dzl2JtHSrYMLs_DviOJmnE2wmOtVAghSB1Ad6LpAjr-MvnsrZ5VE2-_Ef9WdIrEVvvPoU%3D&request_ab2=0&zoneid=5118524&js_build=iclick-v1.434.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.434.0&bs=e3e7f01b-3e1b-4e6b-afd9-7eae4e7d3cbe&userId=bca8937b41d848c2bf1e652cf67ea92d&m=link HTTP/1.1
Host: onmarshtompor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gotovotvet.com/
Origin: https://gotovotvet.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: application/json
x-trace-id: 9de25859317decd83c68bdd5ed75e25e
access-control-allow-origin: https://gotovotvet.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:42 GMT; path=/; secure; SameSite=None
oaidts=1665181722; expires=Sat, 07 Oct 2023 22:28:42 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 14 Oct 2022 22:28:42 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
betotodilea.com/500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 betotodilea.com/500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
GET /500/5124801?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Cookie: OAID=52101c9aef15449dbc7611ee2d924ba2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: application/javascript
x-trace-id: ed386161f5867f972aef160eff5a130b
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: https://gotovotvet.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:43 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
loajawun.com/500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/2 loajawun.com/500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /500/5130382?excludes=&oaid=bca8937b41d848c2bf1e652cf67ea92d&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: loajawun.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Cookie: OAID=a7d4d1562a6d4458942e4d6f0ca17f54
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:42 GMT
content-type: application/javascript
x-trace-id: 54a8ee463e2a949e72d9c4e57acb970e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://gotovotvet.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=bca8937b41d848c2bf1e652cf67ea92d; expires=Sat, 07 Oct 2023 22:28:42 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
104.21.91.63200 OK 0 B IP 104.21.91.63:0
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 5c5b323c14a71197e7022c867c3f6580
cache-control: max-age=86400
last-modified: Fri, 07 Oct 2022 10:35:29 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 08 Oct 2022 21:57:00 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 1901
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30b1SBpiD8im2TxhL%2BuxNWfcxHAL3qAx0zKk5HUjyO9wYQRoaY4jzvqCpm%2BTFNsZcay3erescKW2r3phmULMZbZuL8D9E8ix1lVinZ9NR8rMQNTSR78ocz7XtC9LWdeW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 756a123fbf4c1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.220%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=2438851779&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwim&p2=fqio&slotNumber=2&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1
5.255.255.5200 OK 0 B URL HTTP/2 yandex.ru/ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.220%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=2438851779&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwim&p2=fqio&slotNumber=2&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1
IP 5.255.255.5:0
GET /ads/adfox/220463/getBulk/v2?dl=https%3A%2F%2Fgotovotvet.com%2Fmegamozg%2F%3Furl%3D%2Finformatika%2Fquestion40922602&date=2022-10-07T22%3A28%3A42.220%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=2438851779&pr=4006117760&prr=&pv=22&pw=5&extid_loader=&extid_tag_loader=gotovotvet.com&ylv=0.662848&ybv=0.662848&ytt=175923471187973&is-turbo=0&skip-token=&ad-session-id=1915891665181722205&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1280%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A0%2C%22fontFamily%22%3A%22ys%22%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=662848&available-width=1268&available-height=939&yaru=true&p1=cvwim&p2=fqio&slotNumber=2&bids=W10%3D&utf8=%E2%9C%93&pcode-test-ids=657519%2C0%2C27%3B651042%2C0%2C40%3B659469%2C0%2C77%3B658041%2C0%2C88%3B659236%2C0%2C35%3B652286%2C0%2C5%3B648528%2C0%2C41%3B661139%2C0%2C29%3B659278%2C0%2C80%3B659288%2C0%2C23%3B658376%2C0%2C40%3B659883%2C0%2C58%3B662848%2C0%2C72%3B204298%2C0%2C45&pcode-flags-map=eJy9WNtu2zgQ%2FZWFn4uuRImS3DdKom0ikqiSVBy3KAg38WYDOM4idS%2B7Rf59h7o4luzSdTdYwA%2ByoDk8nJkzM%2BT3EZsWXFCdMylpqlOiiC6JILnUEy70JUsp16zQCc9jPnrz%2Fvvoy3L9eTV6M1p9%2B2v0arRdfdqyG%2FiLx46P8ejpw6vRJZFa0LcVlUpf5qTUE8FzTVLZs1eiovsAgRuiyNkBpEySOKPAgM5JzDKmFpoUwHBOs0wrQZILVkx1zlPag5UUPuJFttBVwd4OlvDGjjOul5izdEqVTgWZ6wkTwHQCm6aa5WRKbfsMsIeRX2PQomW47yN4mLCCKQpuTC7kjCs9Z2rGK6UJuFhJOzgOIu9s8JdAJuDVUvC0SpQ8XOY8aAqQZ6bPHoiJPkl1IihR7JLqlCqaKMYL3eUqTRmBqGX0REbh0A%2FcHSa9KnVB51pC4miIh1SwAvBkV6dxcNikTc6BEJDLSEwhC7luge1b25mbrytJn2nAz%2BIjCxGDJFUTSCokeKdnGQQuCoKebYDCMKxtQRgZJykVdYxI3mO%2Fffy82jPzUQSiacyAuJTCUB3YDHe8ZwS%2BkpSCv2NJBTDtm22WH9ernqUXoHHDEuICVanQM8qmM6ULZV%2FSx964iXXCq0KZ2FzNhNUkCqNWyQuoLPRKi0qnPCessBY6J0ResKMYC34B%2BwN6eipYarV0QxwFRxc05U4JFlvNkesEDd93tEB6UoFkoY6B%2Fk9WLey7fltca9uuusZcmDwQJGWV%2FO0nERbE8G4IQ92Yk4W19GDfC9vQpJMSOoMseQG5pFhOQYY9U%2BQ4Tt%2FWd7xmz2UCpR5EAqaFtR5hHwNMm30TDl6mJt279U7JFZYMQ3RoziZG%2BHOjO0joX0HoCFySrOpFy3OOW2eUiAJaHNS8SyIYGewb9RbF0NoaL0P%2FlqZKQivfOZsKAVrP%2BHQfAffsI8dvvFYKxoXpt%2FGibr8lF3aHB2HQyt18rguuWEKhi%2BRTq1mIwK42k7LUCUlm1DDUJRXJIMau03NRiN1xkxVQwZLWaiCBQSHDUYRw49Yu%2BVMmoLHoRFrLBB67YbQnOyaBKngT%2BnliaErbomMPu27Ptpaq3M0EJUlTmGPsID5uI1OXNtCrWpRUe3bWUN7wXg7mIoFgStaMUvblxmHwQ0uYrXSSseTixOodRl5lisWkKIA2NJ4JgymTmU1MSGIvWeMItQ2r4dGCNP0SyjsoqszIIoYRxZQFJXiWDRvMoBM7yPeaHJgKEiP7t6BD5%2FlbLdm7Hl%2FsIsf2%2FZHy5uIfWHTJMaN1WxY0pRKGHSs%2FF6OgsTbThKAT0PrMKIEldrvIa7sIOA1G39zIXMDU3M4DpaCxvY8F0IiQ25MSzAYC8hr6LogY4mF6k4QJDjojaNvOZ%2Bz6rZafjUhZmq1MQRp2Y%2BSOcY%2FJjKl6G3tg4MwLxe0svBCh3gyblHk7aO4GUWkvFHC68NoOucNI%2FjPGYExP6YSAos6c0H3sBI0cCzM0gH9yohoNkdLwcnw3ss%2BwLmpnpc7RMidCaThhVdTQOxVmHAQB3s2R8cWBng5dgSPv%2BTxorAj48%2FBY0TI5Ipnrh8328WE92IjjI4uDD%2FPmhK%2Bvt4MFxn7b1Y4vAPrKWZW%2FMOoebcWrZPbC8LKC4X1x7rnwBOiC7N68JCwU01%2Fevck0VphRAk5X0OQW3aTcL4htu%2BmDwPzUFMWufLeJqeCgCmlraiPPeF%2F%2Bm9XXAZPubHEMBOaOtO79PYyH9c0ZGDWRA4yzeJyITmdpRnU4wSYKFCvVIqPTig0uaw4CgVB7QBrm34ykHLoch7Gru2SA0%2BRiPqPCDulHGEVnQ8IhIaGlalOrq97%2F20L1TRc8J7OfXHLf13GlFAxpP%2BnywHW9ca%2Bw1%2BfKesSr%2FxJx8i7nUE8obHjV92stIThAFbULeDWdaQnKpL8AHEWHI2GrWOhn5w6E0GJ6s24fsI1Wd1tjp7ZDysi7ha4PfPWRdd%2Fq%2B%2BiP1fb6z3z5eHu3aefB%2B4ePd%2BuVvF6u7za3ozfoqb%2FhqL0V22%2B35iYrzsw2MziF7y%2FwfnS%2FvFu%2FfvwM3P5ebm5W3%2BD597v75e3qU%2B%2FV7fK%2BfnPzz2rTfL78crd9aB7vX%2B%2F%2BfDjOpt7Z8DonCFDkR4NLJ%2FPm6cPTvx2lk6k%3D&use-server-side-rendering=1&pcode-icookie=GrEc%2FnvgQONsycxmTZ9vK1lcAiX1D33Nt3VpKxxK0zOMxO34%2B%2FZhJs8ZBWsHpaaOVuUn4nKAOpWC0uPfpiF%2B9aOm5WA%3D&top-ancestor=https%3A%2F%2Fgotovotvet.com&top-ancestor-undetermined=0&grab-orig-len=608&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoyNX0KcqwitTzP60EpWPdGidIXKt8UVGtTMqNOkrVkshhqZOjV7Ou-Dzn2wT4vsgMmMNRjQ27YEntqik102xvEIAYxoF2fW_gP-azC3894zoM--1nPSPdzH_zBDnnnrVkpwZRU14unpI8gntWvXo-JCJmJHj7dXsd2htvlK-hmaPl29Zuzdtic2p0qXw_99AcrggfZTwdseI7hfx-S_rSCfmnBSuKZ6CbLWiCMZ-CLdugN05Qv0699aW-3YeBobpEf9GZ1bG-4Y1OgcW-Y3I7ICZ7qJLuMotox66VMezg6ocmETXzKWCtWzMQYP2xBPgEyKfWgpnNJvBXpw5y4aCdhlKMnqK3L_CGO4DzzmQUNfz-IEUDPZ0HcRVBQ86Twro1zTE9TQqo55IbIhuN0a-u4sjZbGTbXXurjKMKyhm1nC0h26qplJi_Sh1IXLwU3uA_18A93BMLZpW0h7VnqCaNI2ix3kT3Z9_19WOo5KodVH-XFLUoYUnha-FF4ANksE-eicYoaPGYfBc4A_oqRZjJUFU502JMYgBPo&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gotovotvet.com
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://gotovotvet.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
x-yandex-req-id: 1665181722405492-15538770286417887653-vla1-3092-vla-l7-balancer-8080-BAL-3371
last-modified: Fri, 07 Oct 2022 22:28:42 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
date: Fri, 07 Oct 2022 22:28:42 GMT
set-cookie: yandexuid=519638431665181722; Path=/; Domain=.yandex.ru; Expires=Mon, 04-Oct-2032 22:28:42 GMT; SameSite=None; Secure
i=K4lotBcY58mcgfle768mOE9W/w4esPF5LXVW5PfuyRkkVNBT5RiHScUawRXJiRgJpzGIiD2B3tT/eJBgcG0D2lDDjeE=; Path=/; Domain=.yandex.ru; Expires=Sun, 06-Oct-2024 22:28:42 GMT; SameSite=None; Secure; HttpOnly
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
x-content-type-options: nosniff
ssr: true
expires: Fri, 07 Oct 2022 22:28:42 GMT
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 0 B IP 104.21.84.149:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 22:28:41 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1338
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KOBExtebgbco%2B7tRc%2FObvUn%2B6SW4QSDYEuOsm2OkBiqXl6Hahmcp%2FdhQjFxjlLFr0IlDneZLSJSYHB%2BCdSELqTrWHvRm8Xr5GuBDYEVSMgDo8DuMyVY9lI5VsmEy2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 756a1241fa99b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
interstitial-07.com/?l=5KiJw7BDBzgssAn&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D3796323203%26z%3D5118522%26b%3D14505326%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D34a04160-60f5-420b-9860-9be7f15c17ef%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgotovotvet.com%252Fmegamozg%252F%253Furl%253D%252Finformatika%252Fquestion40922602%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.152200 OK 0 B URL HTTP/2 interstitial-07.com/?l=5KiJw7BDBzgssAn&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D3796323203%26z%3D5118522%26b%3D14505326%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D34a04160-60f5-420b-9860-9be7f15c17ef%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgotovotvet.com%252Fmegamozg%252F%253Furl%253D%252Finformatika%252Fquestion40922602%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.152:0
GET /?l=5KiJw7BDBzgssAn&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D3796323203%26z%3D5118522%26b%3D14505326%26c%3D5990211%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DggHpzK74g0YUqJQvZa3CkzYGAIioPX8gh3ub31oRt7uehdQuSe11dFNl-IkWNv_mLb7jn7u6X6flegzVLQAIMurIMPsXpjZEsh3_e2n5Bt8ACo1MxLa0rFhRAEuAaCQNxcerwDts_c2fxUtNs0v_rZWUBxFQ_5bgV6stUgzfnr3Ui6dIPBBeE2GlpRtTnHJQda-nYNDjyhJCuHpZGRgkPDK_jPBGzTNNU1ZGuw-hRmPdB41HacfjOcUzefFFcIFs2LDOn9fSXVjDJVVcJBcYqWuD3uQgRozFskwIh1IDYj9XsB5pvws1MMCrOPt1xA70EU7jyMnKSFnJ_Na1jgKRWCM5zko8aUhsH2q_mQfUuLZubbpNqpLkZVpMk6NnSoOGztQjV9rYTLkFeoam_vrQUcqK6-N1fdNNx6UNvw7ulH_6bGsHG4psktVCF0zMHWEkPyV2E57-RJ8SxFWBvktxklDIehOFtOzqa1UJquEcpdwlugufXi7D84THRQQDW1LFw8xV_CNOL6j3Kbrq2HIkps6vp1IeybfGLhnl5WLLRc7tMssVu4VxBmwHyW6oBjuPr9rwkvHRf_nY8r7hA8lt5p0uKpQBH39sfZIuQIvgTANvIQa9Q1GUyEFTTb62LXO_MHjrb2rHN3whBlhOXAjT0g%3D%3D%26bag%3DK9GC8xFjczykNNyRrWsoXw%3D%3D%26ruid%3D34a04160-60f5-420b-9860-9be7f15c17ef%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fgotovotvet.com%252Fmegamozg%252F%253Furl%253D%252Finformatika%252Fquestion40922602%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gotovotvet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 22:28:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=vWtHEyH2BUeY_AtoRfbmwkylpmOmuML-nc74IQBsros; expires=Fri, 07-Oct-2022 23:28:43 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2