lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
91.211.251.215301 Moved Permanently 169 B URL HTTP/1.1 lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
IP 91.211.251.215:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523
GET /blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://lesnik.life:443/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 12:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r9sz7NHje9bvZNspgv3dh3U48z1p1CTIrAmuEO1LRjKJyFGQ4HNWbA==
Age: 1528
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7738
Expires: Tue, 27 Sep 2022 14:49:56 GMT
Date: Tue, 27 Sep 2022 12:40:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5296
Expires: Tue, 27 Sep 2022 14:09:14 GMT
Date: Tue, 27 Sep 2022 12:40:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kzjLkOUBw0NpQdylOHt/AbpbLVkZNV8Oh381h3T1eA/lP9oC/Iwf6Dk+RwTZfzXTgFRjA1jAIi8=
x-amz-request-id: E3EQP4CNWBAG07EK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Sep 2022 11:49:23 GMT
age: 3095
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b9c24eb115c5921ae723387cea024f2
387b7ae7a2054304cd24f9d8e2de2a82fe23c48e
7c391ce0bf4821381c0957364c9e0a26d67e6cc67b72a448cfcaa23725ade89c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C391CE0BF4821381C0957364C9E0A26D67E6CC67B72A448CFCAA23725ADE89C"
Last-Modified: Sat, 24 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6609
Expires: Tue, 27 Sep 2022 14:31:07 GMT
Date: Tue, 27 Sep 2022 12:40:58 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 12:40:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
91.211.251.215200 OK 44 kB URL HTTP/1.1 lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
IP 91.211.251.215:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2978)
Hash 1197cb7f6b7fcf6918c2753f1345273f
6390d29281049b196a0597dea8110faf9ffcb79e
fa76d05fa1aacc94373bbc67575154b21c00409bf804eaaed0f9b69db35228ce
GET /blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.33
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000;
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 12:10:46 GMT
Expires: Tue, 27 Sep 2022 12:40:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X76W_wvxGHAZYKrn7kFg9wL5FNI5EPbohpA3zSRAUJYJR-IAJN4YXw==
Age: 1813
lesnik.life/wp-content/cache/wpfc-minified/dgj95tvc/61n80.css
91.211.251.215200 OK 38 kB URL HTTP/1.1 lesnik.life/wp-content/cache/wpfc-minified/dgj95tvc/61n80.css
IP 91.211.251.215:0
File type ASCII text, with very long lines (29456)
Hash 089a28253458a6d3d43311a93311e17a
81c718b3460b0230952d6af6cefc451443c6c0f2
0b59a2ec6bc0ac9963ac9b8b5b5c20bc02699cccddd5f759429469b1fadec6d3
GET /wp-content/cache/wpfc-minified/dgj95tvc/61n80.css HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: text/css
Last-Modified: Fri, 28 Jan 2022 03:13:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61f35f6c-20726"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
lesnik.life/wp-content/uploads/5cd266520fb285cd266520fb76.jpg
91.211.251.215200 OK 44 kB URL HTTP/1.1 lesnik.life/wp-content/uploads/5cd266520fb285cd266520fb76.jpg
IP 91.211.251.215:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x400, components 3\012- data
Hash 3faa69ab7756fd4401df7ce02a89e420
add2ff485212e01db557583528ac16ef60665e1e
c7cb53c47e38b86c01f68a69ee6454286c6bc2244e266212267a81d1ec6e471d
GET /wp-content/uploads/5cd266520fb285cd266520fb76.jpg HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: image/jpeg
Content-Length: 44436
Last-Modified: Wed, 08 May 2019 05:17:06 GMT
Connection: keep-alive
ETag: "5cd26652-ad94"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
wpfc.ml/b.gif
172.67.196.163200 OK 42 B IP 172.67.196.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /b.gif HTTP/1.1
Host: wpfc.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 12:40:59 GMT
content-type: image/gif
content-length: 42
last-modified: Sat, 29 Feb 2020 13:07:48 GMT
etag: "2a-59fb6a401d100"
cache-control: max-age=16070400
cf-cache-status: HIT
age: 880
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssEs4FtczLcZ9%2BUOIzREKqn%2BkWknXSkOj%2FB4qnwgooKxKcjUjxmXFcQ7E7JuhryQ4%2F%2BcTVmm6cFTByKRk0ekhupu4UBrVKtDdMluPkWv5WU4XgVTOMU6VNsE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75144f9b68221c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lesnik.life/wp-content/cache/wpfc-minified/djk65e3m/61n80.js
91.211.251.215200 OK 518 B URL HTTP/1.1 lesnik.life/wp-content/cache/wpfc-minified/djk65e3m/61n80.js
IP 91.211.251.215:0
File type ASCII text, with very long lines (1014), with no line terminators
Hash 2358ece6201bff6aa14f0a6a28b12f37
b92a93107ef8e29d30f33935e78fc25e9dfa7a37
9babadc18a50772176247089215a944f545ad6a6538e3139778b4f79784f3fac
GET /wp-content/cache/wpfc-minified/djk65e3m/61n80.js HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Fri, 28 Jan 2022 03:13:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61f35f6c-3f6"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
lesnik.life/wp-content/cache/wpfc-minified/d32vgo2u/61n80.js
91.211.251.215200 OK 2.4 kB URL HTTP/1.1 lesnik.life/wp-content/cache/wpfc-minified/d32vgo2u/61n80.js
IP 91.211.251.215:0
File type ASCII text, with very long lines (2160)
Hash 42d56d562136fa9928e8dab501026a45
4830ed2ddc3467e7dfcdb1b777459be4f8f9c80c
1d5351258d5154241dda1db43f5766c463237b4e7f22988deaacbaf32319545b
GET /wp-content/cache/wpfc-minified/d32vgo2u/61n80.js HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Fri, 28 Jan 2022 03:13:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61f35f6c-16d9"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
lesnik.life/wp-content/uploads/cropped-1_Primary_logo_on_transparent_109x73.png
91.211.251.215200 OK 4.3 kB URL HTTP/1.1 lesnik.life/wp-content/uploads/cropped-1_Primary_logo_on_transparent_109x73.png
IP 91.211.251.215:0
File type PNG image data, 92 x 73, 8-bit/color RGB, non-interlaced\012- data
Hash 5be63e5da88b35c6c1bb5ef8b1a890a9
8b6640ed9e4d0f59156c10ca4c1c43d9f90d4bbb
a9349db64a0845b913194384fae7037dcd64974f38a3aa286ad0f431f89e9128
GET /wp-content/uploads/cropped-1_Primary_logo_on_transparent_109x73.png HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: image/png
Content-Length: 4327
Last-Modified: Sat, 26 Oct 2019 18:43:30 GMT
Connection: keep-alive
ETag: "5db493d2-10e7"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1340
Cache-Control: max-age=157687
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:40:59 GMT
Etag: "6332af16-1d7"
Expires: Thu, 29 Sep 2022 08:29:06 GMT
Last-Modified: Tue, 27 Sep 2022 08:06:46 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
lesnik.life/wp-content/cache/wpfc-minified/max34hdd/61n80.js
91.211.251.215200 OK 38 kB URL HTTP/1.1 lesnik.life/wp-content/cache/wpfc-minified/max34hdd/61n80.js
IP 91.211.251.215:0
File type ASCII text, with very long lines (31997)
Hash 799972a8ecf4cf259030ec5299ccee9c
73f0950300463c1b4e19e9755555d3add0077a02
0d31c366150d892b765c5eee16e00e46ad67df0232b0e6f0bd1f9689cf9089fa
GET /wp-content/cache/wpfc-minified/max34hdd/61n80.js HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Fri, 28 Jan 2022 03:13:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61f35f6c-1a41c"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
lesnik.life/wp-content/uploads/5cd26652058335cd266520587c.jpg
91.211.251.215200 OK 23 kB URL HTTP/1.1 lesnik.life/wp-content/uploads/5cd26652058335cd266520587c.jpg
IP 91.211.251.215:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 550x400, components 3\012- data
Hash 5ad69d03c3a13c07ba4d195db6c7d78d
3122ad2effbdca5b4807436dc41bab19a70d9e41
fa6da156f32dbf8390bad3fcd48f9050dd684d74d1d4d8684cf0bfb0f6a87e4d
GET /wp-content/uploads/5cd26652058335cd266520587c.jpg HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: image/jpeg
Content-Length: 22810
Last-Modified: Sat, 26 Oct 2019 18:26:56 GMT
Connection: keep-alive
ETag: "5db48ff0-591a"
Expires: Fri, 22 Sep 2023 12:40:59 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:40:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a32b9da874330d8b827d4d958bbe7bfa
b7313c9ab5361b3a277406f65d7c770e9e1a0414
82c91d993c38576ad0c13c701231479e0566233044743b76f554e0d2534eebe1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82C91D993C38576AD0C13C701231479E0566233044743B76F554E0D2534EEBE1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17622
Expires: Tue, 27 Sep 2022 17:34:41 GMT
Date: Tue, 27 Sep 2022 12:40:59 GMT
Connection: keep-alive
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 596069595a1baa0746472721733f2578
2018f0a825d4c7105aae137c0dea9447e09fbe4a
aecf2eed19e07758fece3110f3f47d661574f1be158c27b822d812f1db7331c1
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:40:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:06:21 GMT
ETag: "2018f0a825d4c7105aae137c0dea9447e09fbe4a"
Last-Modified: Tue, 27 Sep 2022 09:06:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3433
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144f9c0d61b50f-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4538701cf9bc34d908f50370beb922f4
df141b9c3ec626ecaba7c1899073a48b811c4113
61497b93eb237687a8fff5845a7a81aff2f2f53dc56f2d0818bfb98dd1256d6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:40:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IoNUPZS9JF5jZkrYTCfDdQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vvgw39lwo81k+KlUIUx58Sz3R1w=
sjsmartcontent.org/static/plugin-site/js/sjplugin.js
212.109.217.26200 OK 52 kB URL HTTP/2 sjsmartcontent.org/static/plugin-site/js/sjplugin.js
IP 212.109.217.26:0
Hash 1b25805d65b93e689c5758d77bbf7cbf
ae41cc4ec433512b72aa5f6bc7dc7ed20d8e22ce
71a1c8e8ad8b4a47ca40d7c58c31f061939447ead3c85f5096c678b5c8b4cd7b
Analyzer Verdict Alert fortinet Malware
GET /static/plugin-site/js/sjplugin.js HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:40:59 GMT
content-type: application/x-javascript
last-modified: Fri, 16 Sep 2022 15:21:02 GMT
etag: W/"6324945e-22b61"
expires: Wed, 27 Sep 2023 12:40:59 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash b2717f86c2e3af09fd19d8a2df3372a5
8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3
f297cb25b5c03459d5fd0324cf355604decffbf0b9cb572a1fea8301b1962964
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:58:40 GMT
ETag: "8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3"
Last-Modified: Tue, 27 Sep 2022 09:58:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144f9faa76b50f-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash b2717f86c2e3af09fd19d8a2df3372a5
8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3
f297cb25b5c03459d5fd0324cf355604decffbf0b9cb572a1fea8301b1962964
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:58:40 GMT
ETag: "8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3"
Last-Modified: Tue, 27 Sep 2022 09:58:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144f9facbcb505-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash b2717f86c2e3af09fd19d8a2df3372a5
8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3
f297cb25b5c03459d5fd0324cf355604decffbf0b9cb572a1fea8301b1962964
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:58:40 GMT
ETag: "8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3"
Last-Modified: Tue, 27 Sep 2022 09:58:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144f9fba7fb50f-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash b2717f86c2e3af09fd19d8a2df3372a5
8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3
f297cb25b5c03459d5fd0324cf355604decffbf0b9cb572a1fea8301b1962964
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:58:40 GMT
ETag: "8dde84c53e3772fa2b32c7eb4d6f57e563dbb5e3"
Last-Modified: Tue, 27 Sep 2022 09:58:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3171
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144f9fbc38b4ee-OSL
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.215200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.215:0
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Wed, 27 Sep 2023 18:29:54 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 7350760eccf8dc12
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/657775/89f5d271e21e56760c43.js
178.154.131.215200 OK 19 kB URL HTTP/2 yastatic.net/partner-code-bundles/657775/89f5d271e21e56760c43.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65494)
Hash 0974d30473bfc7ac5731d0550928e588
0325697d582fda70c263e8f27cb82532e13c7ae5
9a2bf162fd766d77f677e8a6690880528c096fc34554a1570419689522c7d5b4
GET /partner-code-bundles/657775/89f5d271e21e56760c43.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 18601
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0974d30473bfc7ac5731d0550928e588"
expires: Thu, 26 Sep 2052 19:16:43 GMT
last-modified: Mon, 26 Sep 2022 17:05:51 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.215200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Thu, 26 Sep 2052 19:15:44 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/657775/bf6568d4240fb25c3e91.js
178.154.131.215200 OK 4.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/657775/bf6568d4240fb25c3e91.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (13535)
Hash 3270110281d51ba7d9d533c3ef60131c
7bee9ea2c6be31259c4f20edb269f72b47590f87
c9ab5874bbd074e0baa85ac481e9cda832b0050b53939ab3abd27e3c1d1d7597
GET /partner-code-bundles/657775/bf6568d4240fb25c3e91.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 4461
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3270110281d51ba7d9d533c3ef60131c"
expires: Thu, 26 Sep 2052 19:16:43 GMT
last-modified: Mon, 26 Sep 2022 17:05:52 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/657775/c866165f18c3bd43fa3e.js
178.154.131.215200 OK 94 kB URL HTTP/2 yastatic.net/partner-code-bundles/657775/c866165f18c3bd43fa3e.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65497)
Hash 4c40b4b7edf62508eece5a2264600ce3
c1300169df55e7cd627cfa1fe775d8f71ee68920
513fc6a7826c4b813723ac8a1833bfb3db85bd6c0e9dccce1696d498bfd0c0bb
GET /partner-code-bundles/657775/c866165f18c3bd43fa3e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 94176
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "4c40b4b7edf62508eece5a2264600ce3"
expires: Thu, 26 Sep 2052 19:16:46 GMT
last-modified: Mon, 26 Sep 2022 17:05:52 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
lesnik.life/wp-content/themes/spacious/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
91.211.251.215200 OK 77 kB URL HTTP/1.1 lesnik.life/wp-content/themes/spacious/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 91.211.251.215:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/spacious/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lesnik.life/wp-content/cache/wpfc-minified/dgj95tvc/61n80.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: application/font-woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Wed, 24 Oct 2018 17:43:53 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: max-age=2592000, public
Strict-Transport-Security: max-age=31536000;
lesnik.life/wp-content/uploads/cropped-zagruzhennoe-192x192.png
91.211.251.215200 OK 5.7 kB URL HTTP/1.1 lesnik.life/wp-content/uploads/cropped-zagruzhennoe-192x192.png
IP 91.211.251.215:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash cf026ceee6ac306cd8a8e19a2c620bf6
bb4a31ba85cd617a1c5e613f294db198350407b0
aa437a5faf81e0bf21282cc5fec28f89d505898457f14e8b965b120060fdfa33
GET /wp-content/uploads/cropped-zagruzhennoe-192x192.png HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: image/png
Content-Length: 5672
Last-Modified: Sat, 26 Oct 2019 18:43:42 GMT
Connection: keep-alive
ETag: "5db493de-1628"
Expires: Fri, 22 Sep 2023 12:41:00 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
lesnik.life/wp-content/uploads/cropped-zagruzhennoe-32x32.png
91.211.251.215200 OK 563 B URL HTTP/1.1 lesnik.life/wp-content/uploads/cropped-zagruzhennoe-32x32.png
IP 91.211.251.215:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash ce2b2b5ed870285e5de969f59cff2d22
5c662b0c2507a0c13250c9065b75e0f00a5fa326
745b5ba2d5f672c5061b0ae3f8127adbea392876424d29f604ae3d3f15890a4c
GET /wp-content/uploads/cropped-zagruzhennoe-32x32.png HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: image/png
Content-Length: 563
Last-Modified: Sat, 26 Oct 2019 18:43:42 GMT
Connection: keep-alive
ETag: "5db493de-233"
Expires: Fri, 22 Sep 2023 12:41:00 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 799 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
Hash 5dce6e9cfa3cb749a8f3e17fda93c7f6
1889652c2cb9a45fd683378c5bf63893eb33a207
5ee9a7ac2b419d557428dea32661943875ab8e637df8c30fc954c49ea224db0d
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 12:41:00 GMT
date: Tue, 27 Sep 2022 12:41:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html;0.8887506585199064
88.212.201.204200 OK 132 B URL HTTP/1.1 counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html;0.8887506585199064
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 0223d80a320a983871bfa82aa6d698ea
f4e06fe8e83c662bb565f175d7de22f51c1e7c9d
fa523f248a332cb89ae3ad8cf51d840153e0f96bcc2a4c8db736e02a340dab48
GET /hit?t44.6;r;s1280*1024*24;uhttps%3A//lesnik.life/blyuda-iz-gribov/blyuda-iz-belyh-gribov/sous-iz-belyh-gribov-so-smetanoj.html;0.8887506585199064 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 27 Sep 2022 12:41:00 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Expires: Sun, 26 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ce9fa7c0f8c668afd33a2fa65bf285e5
0333c06c16ea38e346cee9aad19965aa9d2729b1
50b7e5b9d9833fbd2c737642a86c63217f3296fb4bce6c7a876e4cde3dcddbd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sjsmartcontent.org/wns/event
212.109.217.26200 OK 51 B URL HTTP/2 sjsmartcontent.org/wns/event
IP 212.109.217.26:0
Hash ac54543b5633aa9cedf1d4862fbeadea
7f49112f6799b998fbf4638636250f3dd232edb0
6c63c37428451470763708e17c1dd6c90735e9acb1367c35ee80a2c1d03f4bb7
Analyzer Verdict Alert fortinet Malware
POST /wns/event HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 223
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 27 Sep 2022 12:41:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sjsmartcontent.org/wns/top2
212.109.217.26200 OK 1.3 kB URL HTTP/2 sjsmartcontent.org/wns/top2
IP 212.109.217.26:0
Hash fe4ab24b0c8b36ec67af1f90c7baf00c
f2fb292ee21e52ecc6e3efe64758366c5b09878d
249ca760bd348bfa74e4d646e9db2007944c152155747b09917e91c1e7891405
Analyzer Verdict Alert fortinet Malware
POST /wns/top2 HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1033
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/json; charset=utf-8
set-cookie: wnid=2d91090c5e689d8b94a46cb7836687fe; Domain=sjsmartcontent.org; Path=/wns/top2; Max-Age=2678400; SameSite=None; Secure
wnid=2d91090c5e689d8b94a46cb7836687fe; Domain=sjsmartcontent.org; Path=/xpx; Max-Age=2678400; SameSite=None; Secure
wnid=2d91090c5e689d8b94a46cb7836687fe; Domain=sjsmartcontent.org; Path=/wns/tpx; Max-Age=2678400; SameSite=None; Secure
wnid=2d91090c5e689d8b94a46cb7836687fe; Domain=.sjsmartcontent.org; Path=/; Max-Age=2678400; SameSite=None; Secure
x-slickjump-counter: sessions=1 d_device=1, loads=0 time=4 top=1, dcfp=0, dcfn=0
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 1a4d5a9c6cacaef778dbfc16855d773c
b3c31ac73457e12cf5d1dad7d6527201c29837ac
3fdcecf051e834be9ae953fad929b89652b0fb600cce5868dd1d6d953f8d9e0f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 12:41:00 GMT
server: ESF
cache-control: private
content-length: 30823
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/embed/
142.250.74.174200 OK 112 kB IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32812)
Size 112 kB (112113 bytes)
Hash 29fed0eca7dd2742aa4db8712114b967
2764bbef02b984b5edf69a05f359d7ddedb962de
d6a71cbd77d69202da4c9796ddbb820c74af0815abc5a07934ec1cd4f714d4c4
GET /embed/ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 27 Sep 2022 12:40:59 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=RFFOxYcUZX4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=fBE7ajnmKSo; Domain=.youtube.com; Expires=Sun, 26-Mar-2023 12:40:59 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+193; expires=Thu, 26-Sep-2024 12:40:59 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 588639
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5354
Expires: Tue, 27 Sep 2022 14:10:15 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5354
Expires: Tue, 27 Sep 2022 14:10:15 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5354
Expires: Tue, 27 Sep 2022 14:10:15 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:37:50 GMT
age: 39791
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5354
Expires: Tue, 27 Sep 2022 14:10:15 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 19:30:21 GMT
age: 61840
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5354
Expires: Tue, 27 Sep 2022 14:10:15 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bs6HOUmHOoYKDuzBoVHhcr8d4HP4bBmwUF3EtOmwKXo7ozhfaIYEvw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:39:07 GMT
age: 54114
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IWzfDNFlgYdqYnbQ9uWfOvqb5zl3I3mgTZrT5pU5P3EvetMRDN5P7w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:06:47 GMT
age: 41654
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 347dca206e13a3b13953f0ab398310b4
be60bbc96c832ae385cc9ae5828bd32703011b21
f6da888a54a0c6c73466f2c2a72dd875514a39d81b760a6b0116b4dd56ef31dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F171029d0-40d4-47b3-8936-8ba3b16b3212.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10211
x-amzn-requestid: 3ea4ac84-2465-4bd1-8ade-863de3c9576e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfSuGoQoAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145aa-7843b82728ead9a053c689d1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p1vYTqYjOmYHjVmJ8f6qyT_nLIsyXsr7ZI-DI7JBF9RJa0ZJNPiluA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:56:23 GMT
age: 53078
etag: "be60bbc96c832ae385cc9ae5828bd32703011b21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 54124
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lesnik.life/service-worker.js
91.211.251.215200 OK 79 B URL HTTP/1.1 lesnik.life/service-worker.js
IP 91.211.251.215:0
File type ASCII text, with no line terminators
Hash b12425c5295296ee535526aa7a55da4e
2e3715ccfd4ffb885d293dfb8fad8f8f2408b13a
b896f7efb9c60e4876450f39b314bee5a05b00b5e173230842b8daee5c9dbb1c
GET /service-worker.js HTTP/1.1
Host: lesnik.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 27 Sep 2022 12:41:01 GMT
Content-Type: application/javascript; charset=UTF-8
Last-Modified: Thu, 07 Mar 2019 05:41:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5c80aefa-3c"
Expires: Fri, 22 Sep 2023 12:41:01 GMT
Cache-Control: max-age=31104000
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1d191f77302166eb36b2e66fe04377b3
76fd2d897c56a03600f76023e6aa612f6b6cda9b
61b140d33011860d3ff8155601a9a466c3a387b234ac0be81419ca2947c6bc32
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 887
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 27 Sep 2022 12:41:01 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 087d55cd3f26d8bf684ddaacf4459c51
45a1d52678578266bfafcf0014185b55f43640e0
195eb7ff577d9f361ec267a54c9be89b25e18938ce7416edb192059e9785eb4c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4257
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:01 GMT
Last-Modified: Tue, 27 Sep 2022 11:30:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
sync.1dmp.io/pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe
136.243.148.229302 Found 0 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe
IP 136.243.148.229:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 27 Sep 2022 12:41:01 GMT
content-length: 0
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=a4ab8f50-3e61-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 27 Sep 2023 12:41:01 GMT; SameSite=None; Secure
uid-legacy=a4ab8f50-3e61-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 27 Sep 2023 12:41:01 GMT
location: /pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe&cs=1
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe&cs=1
136.243.148.229200 OK 35 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe&cs=1
IP 136.243.148.229:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /pixel.gif?cid=9650c6fa-0307-429f-a7cd-02b8194310c0&brid=9793d77b-f9fc-4343-a4d3-9779efd2f770&pid=w&uid=2d91090c5e689d8b94a46cb7836687fe&cs=1 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: uid=a4ab8f50-3e61-11ed-acfd-901b0e8b2a6e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: image/gif
content-length: 35
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=a4ab8f50-3e61-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 27 Sep 2023 12:41:01 GMT; SameSite=None; Secure
uid-legacy=a4ab8f50-3e61-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 27 Sep 2023 12:41:01 GMT
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe
95.163.52.67302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe
IP 95.163.52.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 27 Sep 2022 12:41:01 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe
set-cookie: FTID=1RMYgQ0tkIIC:1664282461:3015210:::; path=/; expires=Thu, 28-Sep-23 12:41:01 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 91c87128fb64afaadbb221e5e378172b
412eea48989655a759cdb4867d8e03d12312d2f5
9a10336151721e04e6fd4158310eb12c268b0e764f30caaabdeee24a8d899b2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A10336151721E04E6FD4158310EB12C268B0E764F30CAAABDEEE24A8D899B2C"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15040
Expires: Tue, 27 Sep 2022 16:51:41 GMT
Date: Tue, 27 Sep 2022 12:41:01 GMT
Connection: keep-alive
top-fwz1.mail.ru/counter2?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?id=3015210;pid=2d91090c5e689d8b94a46cb7836687fe HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIC:1664282461:3015210:::; path=/; expires=Thu, 28-Sep-23 12:41:01 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
pushprofit.net/n/service-worker.js
92.38.252.165200 OK 9.4 kB URL HTTP/2 pushprofit.net/n/service-worker.js
IP 92.38.252.165:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (9436), with no line terminators
Hash 310e3de3d6f69466e50c25d7d28d020a
e2669b3cecf1572569c9aa68d5730b937d55c4db
878b30c354eefdd729b4ef9009fd59cd8642b9f0196a717ff38264e17b91dbbe
GET /n/service-worker.js HTTP/1.1
Host: pushprofit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.16.1
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: application/javascript
content-length: 9436
last-modified: Tue, 20 Sep 2022 11:12:34 GMT
etag: "6329a022-24dc"
accept-ranges: bytes
access-control-allow-origin: *
X-Firefox-Spdy: h2
yastatic.net/s3/games-static/favicons/icon-192.png
178.154.131.215200 OK 24 kB URL HTTP/2 yastatic.net/s3/games-static/favicons/icon-192.png
IP 178.154.131.215:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 7819c957eaa80af5bf14f760d49b64a7
93b670523acd14f884c3a538d59d408da0888a6c
ca78c114bba40b141a59c55a9d3fb6db7672bc3effd4337f2b1ce512b4d06c9e
GET /s3/games-static/favicons/icon-192.png HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: image/png
content-length: 24134
access-control-allow-origin: *
cache-control: public, max-age=216013
etag: "7819c957eaa80af5bf14f760d49b64a7"
expires: Fri, 30 Sep 2022 00:39:22 GMT
last-modified: Thu, 14 Apr 2022 12:22:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: f005c5101c688a15
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/657775/4bc6608001f628f9333d.js
178.154.131.215200 OK 20 kB URL HTTP/2 yastatic.net/partner-code-bundles/657775/4bc6608001f628f9333d.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65490)
Hash db085ee677cef3dc73d833998b26c267
1bbbdea903a9d6c6bbd9ad9c14005304536d96cb
75261d526338a0e9bcfa4b01debb53e6123682106cf233cf65119fcfb50df7bf
GET /partner-code-bundles/657775/4bc6608001f628f9333d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: text/javascript; charset=utf-8
content-length: 19911
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "db085ee677cef3dc73d833998b26c267"
expires: Thu, 26 Sep 2052 19:14:06 GMT
last-modified: Mon, 26 Sep 2022 17:05:51 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 669398bfa8f68e8bc9a897607666dd03
a1cb3a6332c377b7fe8470718ce4f9f0df401076
d9c4f76df5f075c85b2bf0fea71faa372e65c9e3ca74876dde25798aefe81401
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:01 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 01 Oct 2022 09:29:48 GMT
ETag: "a1cb3a6332c377b7fe8470718ce4f9f0df401076"
Last-Modified: Tue, 27 Sep 2022 09:29:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144faa2c98b50f-OSL
yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
178.154.131.215200 OK 6.3 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
IP 178.154.131.215:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23297)
Hash eb77de48712912aadc9aa8171ac75ede
f375e4ed6b585c4e30b2d56f4f41c3beed909349
437ee0c22002ccd77158d7a7018113f26384324158ab3cef65373007f29b1bcf
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Thu, 26 Sep 2052 19:15:19 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
an.yandex.ru/event_confirmation
213.180.204.90200 OK 174 kB URL HTTP/2 an.yandex.ru/event_confirmation
IP 213.180.204.90:0
Size 174 kB (173778 bytes)
Hash 836dbd6a94b2887ed477805ead8712fe
fc359169796cf1832f2da2daa95fe8a20cfcab7b
886d85f23985c9527528fa1e110b02142cd3827110ef14a0877bc4b797c61c9a
OPTIONS /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://lesnik.life/
Origin: https://lesnik.life
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
date: Tue, 27 Sep 2022 12:41:01 GMT
access-control-max-age: 1728000
access-control-allow-headers: content-type
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 8a4dccc5855403f0e327920a49608718
578e86bb735cb3d3b86d4b1f1c638bc7cd1c076f
08d7041abeeaac397de71084b3ef8ff4e90dbab6f7fb3d8e972f45dd69ee1023
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 01 Oct 2022 10:09:01 GMT
ETag: "578e86bb735cb3d3b86d4b1f1c638bc7cd1c076f"
Last-Modified: Tue, 27 Sep 2022 10:09:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3154
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144faaad65b50f-OSL
mc.yandex.ru/metrika/watch.js
87.250.250.119200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (570)
Hash 44366cc385a5c0f49df4f22b71434b42
3f56349f8a3fff52e28a3300052bdc2bde97371c
485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57285
date: Tue, 27 Sep 2022 12:41:01 GMT
access-control-allow-origin: *
etag: "632d6d03-dfc5"
expires: Tue, 27 Sep 2022 13:41:01 GMT
last-modified: Fri, 23 Sep 2022 11:23:31 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5296029/i5fdI4atm8y2q7LFZus2HQ/x450
87.250.247.183200 OK 14 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/5296029/i5fdI4atm8y2q7LFZus2HQ/x450
IP 87.250.247.183:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 450x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5e6c22da6ba34b5137899608e35000fa
7e69787f9aa6a0e4e1afc254ae72d4dcb432e20f
ded007bb443514d9448495e513d55191a48d6ecb11fc58ef3653944960737f38
GET /get-direct/5296029/i5fdI4atm8y2q7LFZus2HQ/x450 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: image/webp
content-length: 14170
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 11 Aug 2021 14:23:05 GMT
cache-control: max-age=31536000,immutable
x-request-id: 9063fb33cd34cf8a
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel"}]}
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash de69f2f13a72bcd82c28dd9f44fa37da
71c643da154f78b15eff598dacbecf9c54dc4514
53eb7ea9241428dc927a2c27dda2264870862e6e800faad0dcfee1b717a0d065
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:02 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 01 Oct 2022 10:05:47 GMT
ETag: "71c643da154f78b15eff598dacbecf9c54dc4514"
Last-Modified: Tue, 27 Sep 2022 10:05:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3081
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144fab8f00b50f-OSL
ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
87.250.250.114200 Ok 95 B URL HTTP/1.1 ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
IP 87.250.250.114:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 60cf42b4d05caf10cf8bb15c0817a7b4
bd269860bb508aebcb6f08fe7289d5f117830383
18c327afa903633f86c3efcf12b77f098077eacaa8be101bb007846fd74f8b93
GET /static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes HTTP/1.1
Host: ysa-static.passport.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Server: nginx/1.14.2
Date: Tue, 27 Sep 2022 12:41:02 GMT
Content-Type: image/png
Content-Length: 95
Connection: close
Cache-Control: private
Expires: Wed, 28 Sep 2022 12:41:02 GMT
X-RT-IQ: 0.0001
X-RT-IH: 0.0001
Strict-Transport-Security: max-age=315360000; includeSubDomains
an.yandex.ru/meta/466353?target-ref=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&pcode-test-ids=657519%2C0%2C69%3B649714%2C0%2C68%3B653341%2C0%2C91%3B656644%2C0%2C71%3B658042%2C0%2C47%3B649817%2C0%2C33%3B652291%2C0%2C26%3B652457%2C0%2C68%3B651300%2C0%2C25%3B657775%2C0%2C78&pcode-flags-map=eJytWF1v2zYU%2FSuDn4dNX5TsvtESbRORRJWk4jhFQbitlwVI0qFNhg5F%2F%2FsOJVmRHIduigB9SA3dw8v7ce65%2FD7hy1JIZgquFMtMRjU1FZW0UGYhpDnnGROGlyYVxVxM3rz7Pvl3e%2FOwm7yZ7L79M%2Fl9cr%2F7es8%2F4b9k5kWETH68%2F31yTpWR7G3NlDbnBa3MQorC0EyN7LWs2RAg9pNg6vUAGVd0njN4wNZ0znOuN4aW8HDN8txoSdMzXi5NITI2glUMH4ky35i65G8Pjghnnjfrj8gFzcxS4mujCgrUismUldrtZhT5YdhjwHxDlaaap%2BacScVFOTJPIrdxrZh6RFAyfcnhMDaSL1cIM1e8C5LKhbYZo9VJrND3G6w1z5ZMm0zStVlwibQtUAHM8IIumSvpMQlJEDUYrOzSNSwY%2FLHgJdcMNZWeqRU8W3O9ErU2FPWmlRucxNPwxeCvgdwUgxRZnWr19JiXQTNAvrCXBiA2zSiOxscj5RWTmCT%2B2DaJgkdbVHgqGYrrnJmMaZZqQJh907OMU2Q8ZydaE5ix32Oyi8qUbG0UOtAgl0rjBNyRX5zGIUnbf4WAQ3Aup3OGdhamA3aHpTffV3%2FvBv454utwBCxheYDJJke0GHlw%2F%2BVhNzCLgikYpDXD4UrJptEKp9cDI9xXMYaYzRWTSOfY7G774WY3sgzjYJY0logtKLo0K9a0e6ndR0YknLX5SkVdahvfi5V0mkyTadfJG9AsuzCyNpkoKC%2BdrO8lQRi3KRm30KLOc4XSY257PwxCr7%2FiXIozxAfXAzfyzG2ZkGl81GE7O7Tkc6d54Htxe99LVgaNu6CPDPxxkvVI5EfdpGps96NqLqStI0kzXqvffhJhQ63frcPgnTXdOKmLRGHSpTZbVBizqhIlalHzgqEVR6aB53lj28gL2ztXKeYmMgXT0slnJCKA6ap3IRBl1ozN7rxTLYsjkyR4as4XtvnXltxOVcgzCHsHzmlej7IVesetc0ZlCb0A3junktODewejQwl0QhtliCFlmRK6qA82kxJckYvlEIGM7Kde1EatklxIO5fnm0bLVEK6Ax4ncUcX9nNTCggDaAReLJ1mSQC7xkypyqQ0XTHr4TFN43ujECXEn7VVAQZMO6uDFjggQjKdBqQN6774My4xXEyqnDRDZn4yHbQdV3AV0YQeSK2bynXoLCSdYNnbNq2qek1R0SyDKHSDRKTLTEON6Fe9qZgJ3V6DHsmgBguZDiSX%2B7hZEj9raaVnmvP07MTpe4yizjWf07KE2xhcCw7Jzu0lFjR1U9ZsGiTJwI8OpCVtjAd0VJXTzRwSx9KCliLPDwfUwTT2gihsa2Ap6Txwf4s%2B9B6%2FNYpfjvwlfuC5vj9Cbz55xmJfHCvWjHXJMqYgeJz%2B%2BSSIW2urKCRboNdXthN46rabht0UQdAgnQvb5hIrSKcnKsnm7jkWYxAF%2FqiVoC0k6hpzG02MfDyOUkgOt0LyZ34UHRvHVq9086nZxiCR9WGrPEHDbPbbsm%2BVogVpJ8cLzZ93ph2Wv%2BSTXopX9ShjC4r%2B2nvWbsE%2FCWerBi2dzwWV7nRbm07wPKaVVpUttiUu4E5v4M%2FIqFZWXDeFNgBDuZ9p4a6TMAmC0ZaSVkW3DvTrgnJTOZbpsNMwPUb66xiNim%2BoWIq1ZaQVxuYlmIjmTgQrkoljldtn9WVbXES8uKXc0gpDRLiguuVJWtmbeZE%2Fde8qfhAMtRYX2HWwWaOt5cZtGUcHSVYFldq8rVnN7MVOkQCJ45j0W0paK43m6gh%2F3yb2wQdXSlctx5wqPOiZfTzaxLZRLuiFgaxSR19OIm8c0lniu54KnlbwiZx9vL85eIsII99xALi44HXxyqgDt7WoEc%2FXhVc1FsXNK4NuaP%2FLa8Ji8P4yol3oK6GshmtetSA%2FDBR7%2F4NiGLAHL4ixd1j2%2B9l3BKx1eczNT58FRhC8tDLYKAjws81%2Byxsj2PXnoE%2BioF9n7X6FM1INgp6Pe%2FbL54e7Twf9MfWTvZTozZTe5GxZ84NXzo%2Fbm5vPD%2Fdfx4cHwWysJNrtHwqoFee8xKA5EYEgIq0XOb3ctE%2BkDYENzb5P%2Ftrdf%2Fy72H65ur7rlNjt5w%2FXNzsFx67vriZvgh9jMgy7JXJIZfYdaZ5bxZlj%2Fx0e8G5yu72%2B%2BePLA3z7b3v3afcNf%2F95fbu92n0d%2FXS1vcUv74%2Bf1fh9%2BMwSkySBlh8%2FBiWNuv%2FxP1rgvs0%3D&pcode-icookie=NkWqvYKR%2FLKh4PPNVPYBp45aSR5N6ZyqM57DkHsgndNbrSDKq9bZ%2FRXu48iCgsRO76TQr5pFZlZzt6YH3WEbA6QLAMQ%3D&imp-id=7&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=201760383696898&ad-session-id=429911664282458872&target-id=80708169&tga-with-creatives=1&top-ancestor=https%3A%2F%2Flesnik.life&top-ancestor-undetermined=0&pcode-version=657775&pcodever=657775&flash-ver=0&available-width=711&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A712%2C%22h%22%3A0%2C%22width%22%3A712%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A56%2C%22top%22%3A1224%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo4NTF9CjKiFI2jOI4BEFjHKdBVFX_dh07sZh7sG9q_7u2efP-8f7VroEfn2-ovu66utdGm3bJErTHgqNLpxzs-IQ_1RFBv2DYLikWYGRN96xK1arTZfyKMGS0sAgooaCZhQWaxmQRMIpUlsTBVFg5LZvGYeEx8lYXNJPZAxGGxWQKVScRiP4C5LJlJyBKyOB5IGCoAEYOkAgwVKTklkIFJA6xhDEwULBA88HyVJWDxH94PBJWFfqDD9jAifNCwJCYhE0YAiQcjbUF_4flQP357WIFccJRZGEyYHqwZECwszz3cBwbdwxT7YeZhJaksTJbQQ8PDk8eExRJ6QAgfpoGBAg8OmB5WDzG-CEsB54EO24MTnUlIl57VYxrXQ-9hz31-SwsOD1Iuk4DF98AcxzMLmHiJuc_FhtfA3VMW92nJw4nYw4HzQDCYzPb8w_W8QyvDG4pPtQ8SJpEHFt8Tsc1aD0oA0xDzUAMLkmcqjwnjaE5o0uiTJaQDFbbF1Qy0yOsnRQ9O9jEK0sGIY1CKhy5UFg4TFA90uVuT4yEkeYDgGZ3IOxhLz59qy4NXQYJRm4hTvgYMTc3fglieMGEN4R0BPoeZQLoGhnGkwP0G5zGhP7iWpADPhOa5wd--IE5UlvC2TYvivJaemPCO1jDU7Y2Arz0EAfPUfHie-OFa3MRILbNAF8VZYvQIxYOF_0CHQLiDZdP_4v_h7jL2W_qJRPiF-KmlqMBjBc82PLMLCCPcn-IgjJ6eMn17SYu10A9OkocA-3jM1eACKJ5qcME7pfuG8BD1vY0EAQl8CsRIEFBRI0SMhISShIIKMXjO90jAXlgiAXthgogMIagqmBTUpKQACy48MlISWhIq-PAoqEmoaBFSgUENh4JEJaUkB52CagCQ9sGsPoApEdLSAA0ZMqQNeDDI4MKnJqElJaEmR0gNF6EKUPBowYRDSkIGn5aCDHQyFREVCQkVXFq4VKTwyMhJKUGjooVPRQ4HXMRIEFKC1hBAAAYVFUIPQxIqcJcVVHAbsA802gIqFTVcMCgBckETYU9JTu6hDVBwqeEF2OhB7ak_A-gATE5doIdPTUlO64GhBJ2ahJKMvEEIh6LA77mgevA3yykoESOhRswCMF9qv5V8IWPiIgGb2sPgAT2AgswEcE-Uvme3qn5pHEJk4pnggdble8gjE00CU-Ivrada-GoBlJYEVHhUtCTUAElGTgYf1AwEMkRAoQKThBZMTzKgk8FNgEZATUoLJgJKCoRwqcgzUAAO4MA9zoJ4hbnrD_84qTLxD5NztuKw5OMiKTxq8iJDOIhoSchA963tYQ32AzowC3jfVERTs2XVY1vsL0162oZcpZ7ty89Dk58w5FVaB1qw4VAU2XhiDeRhk0F133Un7WL7x9e0YJKRk_ieNxuRbjdmuD_g4FHB_V6hYQzdBzy4wBpneMxCo2PaQpMxdhdlsyioqeGSUHrgIqO25F-Bv0Y8gPqKTwKHlBYeHEQUlKQIVKu2f0cu7SOAAx8ROTUlhYqAipzEd1s3GS0iClDhIKSmpQQIWkRUFKAioAUdLiUiMtACTw7UR6weoIlg4SG-_wTpkol_a_ieZjF9f2JsEz0VwjoKlD93E1wREnxS7rv0bQn9AS77ggDjAfYNiHkU4rGOA_YS7YPfvZo53R4ACfsSz9VHpX42f1wMxE2j6t36_8v8z6KcL_OCgxT2lf_jpZAJzUOc6PPePzqM_TqCT9-ej7iTQKXv6EujHnjeY9jnHM5hZ3nTHJbnMa6iTpH2XL3CDGnp_rkrZU6py8jDip6eD7z3HnmfkTzVeiAReKqDubDwrKz-MdKePhehHwf4z7Wlywea4K6-tN_8-Yd3FES8WUMZ6v0Us1SLdSVY4JJCTlXPNs7mAv5nDs_JJ7lPIUyCzKMD-nJdemg9E3CmthyP_5QRe0pC_WD0YPFfS9HfP8W-CUw8cBT1mMM_KhE8C_-ty_pffJeRd99mfpsnpqHocNWUZzzeF_gv67y71EeKniWokIANz9dkFIgB-RGkL9koDp8Cf5daOja5h3Zd9i1JvND9uvH0dFAF6zj6lcYXGFcwfZs9G1AjR4ryehkcoFYpiFwVqqhpUJjg_gZ8Yjpmw96MxtuITt7gfnrrMANqGpUJ07PngE2w7sd438yTkHqtwD4yFywW4k0MzY8cRL-ulJ79325FJ0wCcFDlvOupE7jnI3tJ_o9Z44C5WOieA0RdZ9kbnXpwe1gutImPTuQ7ItLRkmBw3-PJQCf3qq7Fjmiuq6-vn8qgT-X2bDu4Ey3-Pp7gP7Y9rJ5CpsfNjhsPwo0XN_6cDuZdDeNXbLNEj_Hs8_An3rLoOStMASXBVqhYnD3_QHGAn8itcRy3cfBVstC8npOeF4DaOnf0vRH9s4J7rP6ojeAgvqR5xRvzK8OWAk2BWNYVFmRP4BeLe-POa-kOoL7Mftn53Fwx1dPGlzSMStQsCZV6uNzKRqRAoaUkv1NJCh8lMjD-eqY84ZsV5FTW6Ic2gjumMJ7WxRPnw19Sjzj3LUofFh13upentzwzHrDH0MMCoXmOjL_AYw_VS9NH_6E_rwJp4rejoaXzlGM8fVd80QU-Y_WnlIPoEbRgiQh74MnJ1e7qwPcAx8Nd3h5cOPse8cDJm0iuLYfmOX28FqjfaIKd0yeF_w375Itdp4D9cDmyeZDjfa7Bu1R6fPe8urjjqB_veCTtzc8h_2B_aauIJydAZ1jSKSHiNeVyw2DSK_ywmlx3dZ6aLB2-I1xCqAI7Z9osHc_8I1Pebd7SEIA01IO5UJ0aGbDy8-1x5nK9D-llpMXqR88HwYbCxSNfpTG_95n4uc-n0HKO0vlXTVxBzz19eOofsAchf1n1tMm5EkZwZFEz8n7XKRa-53oQ5FxFuTZ5Kv7PR_iNOTfd1TRZUadW3EMdlm478a7F7rR3d-6xjN3_bUzw9LE03Z_P85k_b9aDDf9h869w-xkRBRmYQAZoOGQkVNfDIXhPcXyt5VztiIiRSgNextWL5bGO9iB1Kib0f4v4ChTGrK1Knp3v4ubko7gs5dJWb2szJguWfh_PPi7b6WiZB3Zi3b9k8Dre1F-G7FIvg1-NHCVKWqQo_3erqD10PiGiH-aFsYdQScsL3yW9Le8pE3UF3owZ__ZX4qegj3uKglQalHuA84_Oh5p4Xs8diPh0Mxg4R038o30YG5BjHZ45Ei-KOEYJ4y3e_DC1Ox2xw6BEB--HRQGCe9TjyUTPkWcGqm77Lbx7PwOv1ImjOVsbCaZo4qr2zaNBatJzOoCo5yKwWejXeN_wXzRg2s9vmT49JW_krqQSJbzh7YDrH7H9mo9geIK-oLqaks60ZoMwu0mz48X-ApCtGJ7J7C4oXN_KX95l49pK9aD5kw_vaHoognJVxOWLANMaQPx9uagPvT-hC5D5B4D7vzYc9fHx9PGFJnvecZZqDitxJjvtmuThhHmpr4kOuCto8v0xeeG1aZi7FU-ZDrqmCS_sqxHObCrcvvz9QNWr4e9sJ9wss674S3-EFX8N7Snrdd4WlL5yHVzRZ9dP2Uug3jJwgL0Sqv6UeTT1cJa2GByHMD3IPZ1j3cWBeZcdO6YTaDoyvGLhID7T4-77-0S5l2Bct99xvlw-OTBTEKCft8dUrqJOinVUsqW7CWqZgnlz9YNx4xcA3So_l2fP3rb1BDZXXSbRoZ3sPdxA9u3IP_rGSo0zfHYhw1XcedhKKsgdNxJdyPBcP_hzdvOXU_vdq_oEfECoi_AQddfUHUyVBWWAxL1j-HXmsNNBnz98--KA3u07rAxzUCYwNT3G5TJ_e6N43Tm1Cq20J3QKCt_51OXDq4ejMtFAToBujOvK9XFImuozADEZKUoTg922f4-LF8tzPa0C9qrTMVb2wSK0e3GEl90LO27rSBnv1neTd-ZkB47Hs55-_Xg5r0x8rv5cV6mrApPzYgqH4C44eCeyu3UWveZuTwOtsCtp99EVkYJHcNEl32i8VjsbHdsJJ76SzhmzsB2QzD2qfzlRjdQup8duOA5fd7yFfvTy9Fax34a_7hwItfepuwhr2eYS0eMsggnvcC6EdmPrVX0o6R_sW_wCcAnp6rwQGGHtBukL1dCSHbMR7-Q10zxW4579M1XNJ_zbvfIIqA8Oez2HYfRjX6fpeTaTfsFHCFaNlxBjn193DeRw_dAXTL_JP9ESqJdiN2ViZ0zDPsClqXvBxL7d7UODasBMmT3vPR7v-EPd1t4EuLb5Vz2hPo1cYxJMSIy_IOfOpEyY5-HOjYKbh45htcbDvrww2xr7WrRfP6StTLz15l7PEn9GvEFvnCgLsIMlRop_rdQGPe8g6k72x3P8mi3qcnbEdSwW37yXnu1BmX-eAnlwyuHzI-2tgptVb8dD38n78wjx5XbJba3CmE5YgqXune0uGO0_YEc9xJcVCZ6lNf-DNL4Qkb14TbmPWh9gu9rf3v9UGs5dCLeR-egZ6HM2VNTtLeFvybyr46EqMjzloPxX5MeWW1KH_FAYkfXmTnbasFJCYdeCx178rfkNulvBXcw7YZf7Eel40J8pqY2ZElDHJAZm2Es7ZEM7UK4zFpy3mqXUHSlAqUvg5p-hAs5M8led8Gee5h7tzrfF3ABEcVl_McDNWbDGuh1G_hALXF67LtfYx886JnY_36bcjpQD1NwDt597iIKlfRj28zD-hOZy2eHT5OEffrlbDZ9Ryyv5b3o07iaqeYNvhewfeRB8bawx3PrK7cvEnN1LdkRndpb1xfhT-d2hypAAwQ2985puFl5nZQ876fEpNvwE-v9p3rW_4A8v2p3kYc0Ih-mDm7AJPm6YTX_r0RWKrkqCBUBIBwF-l1HnhFxYQcpx7bvbfv7bbRTWxRDbMC5T9-j27QZpShK_vOZ4dseDdH1aXjj7SWk-2GMD1XYAe9oGaYgTa5sUa7Gj9CCulxtvB7tf9eMQe6DsaNjFELqTv3hsnNxTqrj1WJ9JStzVsIpFUgdqi2f52VMqWBv36Xkhw7m-QM4dapE1fzrFjp-32es-fFpXTC50v99JJdyTYy6FvRmH19C9vO9E&uniformat=true&callback=Ya%5B2535925680512%5D
213.180.204.90200 OK 97 kB URL HTTP/2 an.yandex.ru/meta/466353?target-ref=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&pcode-test-ids=657519%2C0%2C69%3B649714%2C0%2C68%3B653341%2C0%2C91%3B656644%2C0%2C71%3B658042%2C0%2C47%3B649817%2C0%2C33%3B652291%2C0%2C26%3B652457%2C0%2C68%3B651300%2C0%2C25%3B657775%2C0%2C78&pcode-flags-map=eJytWF1v2zYU%2FSuDn4dNX5TsvtESbRORRJWk4jhFQbitlwVI0qFNhg5F%2F%2FsOJVmRHIduigB9SA3dw8v7ce65%2FD7hy1JIZgquFMtMRjU1FZW0UGYhpDnnGROGlyYVxVxM3rz7Pvl3e%2FOwm7yZ7L79M%2Fl9cr%2F7es8%2F4b9k5kWETH68%2F31yTpWR7G3NlDbnBa3MQorC0EyN7LWs2RAg9pNg6vUAGVd0njN4wNZ0znOuN4aW8HDN8txoSdMzXi5NITI2glUMH4ky35i65G8Pjghnnjfrj8gFzcxS4mujCgrUismUldrtZhT5YdhjwHxDlaaap%2BacScVFOTJPIrdxrZh6RFAyfcnhMDaSL1cIM1e8C5LKhbYZo9VJrND3G6w1z5ZMm0zStVlwibQtUAHM8IIumSvpMQlJEDUYrOzSNSwY%2FLHgJdcMNZWeqRU8W3O9ErU2FPWmlRucxNPwxeCvgdwUgxRZnWr19JiXQTNAvrCXBiA2zSiOxscj5RWTmCT%2B2DaJgkdbVHgqGYrrnJmMaZZqQJh907OMU2Q8ZydaE5ix32Oyi8qUbG0UOtAgl0rjBNyRX5zGIUnbf4WAQ3Aup3OGdhamA3aHpTffV3%2FvBv454utwBCxheYDJJke0GHlw%2F%2BVhNzCLgikYpDXD4UrJptEKp9cDI9xXMYaYzRWTSOfY7G774WY3sgzjYJY0logtKLo0K9a0e6ndR0YknLX5SkVdahvfi5V0mkyTadfJG9AsuzCyNpkoKC%2BdrO8lQRi3KRm30KLOc4XSY257PwxCr7%2FiXIozxAfXAzfyzG2ZkGl81GE7O7Tkc6d54Htxe99LVgaNu6CPDPxxkvVI5EfdpGps96NqLqStI0kzXqvffhJhQ63frcPgnTXdOKmLRGHSpTZbVBizqhIlalHzgqEVR6aB53lj28gL2ztXKeYmMgXT0slnJCKA6ap3IRBl1ozN7rxTLYsjkyR4as4XtvnXltxOVcgzCHsHzmlej7IVesetc0ZlCb0A3junktODewejQwl0QhtliCFlmRK6qA82kxJckYvlEIGM7Kde1EatklxIO5fnm0bLVEK6Ax4ncUcX9nNTCggDaAReLJ1mSQC7xkypyqQ0XTHr4TFN43ujECXEn7VVAQZMO6uDFjggQjKdBqQN6774My4xXEyqnDRDZn4yHbQdV3AV0YQeSK2bynXoLCSdYNnbNq2qek1R0SyDKHSDRKTLTEON6Fe9qZgJ3V6DHsmgBguZDiSX%2B7hZEj9raaVnmvP07MTpe4yizjWf07KE2xhcCw7Jzu0lFjR1U9ZsGiTJwI8OpCVtjAd0VJXTzRwSx9KCliLPDwfUwTT2gihsa2Ap6Txwf4s%2B9B6%2FNYpfjvwlfuC5vj9Cbz55xmJfHCvWjHXJMqYgeJz%2B%2BSSIW2urKCRboNdXthN46rabht0UQdAgnQvb5hIrSKcnKsnm7jkWYxAF%2FqiVoC0k6hpzG02MfDyOUkgOt0LyZ34UHRvHVq9086nZxiCR9WGrPEHDbPbbsm%2BVogVpJ8cLzZ93ph2Wv%2BSTXopX9ShjC4r%2B2nvWbsE%2FCWerBi2dzwWV7nRbm07wPKaVVpUttiUu4E5v4M%2FIqFZWXDeFNgBDuZ9p4a6TMAmC0ZaSVkW3DvTrgnJTOZbpsNMwPUb66xiNim%2BoWIq1ZaQVxuYlmIjmTgQrkoljldtn9WVbXES8uKXc0gpDRLiguuVJWtmbeZE%2Fde8qfhAMtRYX2HWwWaOt5cZtGUcHSVYFldq8rVnN7MVOkQCJ45j0W0paK43m6gh%2F3yb2wQdXSlctx5wqPOiZfTzaxLZRLuiFgaxSR19OIm8c0lniu54KnlbwiZx9vL85eIsII99xALi44HXxyqgDt7WoEc%2FXhVc1FsXNK4NuaP%2FLa8Ji8P4yol3oK6GshmtetSA%2FDBR7%2F4NiGLAHL4ixd1j2%2B9l3BKx1eczNT58FRhC8tDLYKAjws81%2Byxsj2PXnoE%2BioF9n7X6FM1INgp6Pe%2FbL54e7Twf9MfWTvZTozZTe5GxZ84NXzo%2Fbm5vPD%2Fdfx4cHwWysJNrtHwqoFee8xKA5EYEgIq0XOb3ctE%2BkDYENzb5P%2Ftrdf%2Fy72H65ur7rlNjt5w%2FXNzsFx67vriZvgh9jMgy7JXJIZfYdaZ5bxZlj%2Fx0e8G5yu72%2B%2BePLA3z7b3v3afcNf%2F95fbu92n0d%2FXS1vcUv74%2Bf1fh9%2BMwSkySBlh8%2FBiWNuv%2FxP1rgvs0%3D&pcode-icookie=NkWqvYKR%2FLKh4PPNVPYBp45aSR5N6ZyqM57DkHsgndNbrSDKq9bZ%2FRXu48iCgsRO76TQr5pFZlZzt6YH3WEbA6QLAMQ%3D&imp-id=7&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=201760383696898&ad-session-id=429911664282458872&target-id=80708169&tga-with-creatives=1&top-ancestor=https%3A%2F%2Flesnik.life&top-ancestor-undetermined=0&pcode-version=657775&pcodever=657775&flash-ver=0&available-width=711&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A712%2C%22h%22%3A0%2C%22width%22%3A712%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A56%2C%22top%22%3A1224%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo4NTF9CjKiFI2jOI4BEFjHKdBVFX_dh07sZh7sG9q_7u2efP-8f7VroEfn2-ovu66utdGm3bJErTHgqNLpxzs-IQ_1RFBv2DYLikWYGRN96xK1arTZfyKMGS0sAgooaCZhQWaxmQRMIpUlsTBVFg5LZvGYeEx8lYXNJPZAxGGxWQKVScRiP4C5LJlJyBKyOB5IGCoAEYOkAgwVKTklkIFJA6xhDEwULBA88HyVJWDxH94PBJWFfqDD9jAifNCwJCYhE0YAiQcjbUF_4flQP357WIFccJRZGEyYHqwZECwszz3cBwbdwxT7YeZhJaksTJbQQ8PDk8eExRJ6QAgfpoGBAg8OmB5WDzG-CEsB54EO24MTnUlIl57VYxrXQ-9hz31-SwsOD1Iuk4DF98AcxzMLmHiJuc_FhtfA3VMW92nJw4nYw4HzQDCYzPb8w_W8QyvDG4pPtQ8SJpEHFt8Tsc1aD0oA0xDzUAMLkmcqjwnjaE5o0uiTJaQDFbbF1Qy0yOsnRQ9O9jEK0sGIY1CKhy5UFg4TFA90uVuT4yEkeYDgGZ3IOxhLz59qy4NXQYJRm4hTvgYMTc3fglieMGEN4R0BPoeZQLoGhnGkwP0G5zGhP7iWpADPhOa5wd--IE5UlvC2TYvivJaemPCO1jDU7Y2Arz0EAfPUfHie-OFa3MRILbNAF8VZYvQIxYOF_0CHQLiDZdP_4v_h7jL2W_qJRPiF-KmlqMBjBc82PLMLCCPcn-IgjJ6eMn17SYu10A9OkocA-3jM1eACKJ5qcME7pfuG8BD1vY0EAQl8CsRIEFBRI0SMhISShIIKMXjO90jAXlgiAXthgogMIagqmBTUpKQACy48MlISWhIq-PAoqEmoaBFSgUENh4JEJaUkB52CagCQ9sGsPoApEdLSAA0ZMqQNeDDI4MKnJqElJaEmR0gNF6EKUPBowYRDSkIGn5aCDHQyFREVCQkVXFq4VKTwyMhJKUGjooVPRQ4HXMRIEFKC1hBAAAYVFUIPQxIqcJcVVHAbsA802gIqFTVcMCgBckETYU9JTu6hDVBwqeEF2OhB7ak_A-gATE5doIdPTUlO64GhBJ2ahJKMvEEIh6LA77mgevA3yykoESOhRswCMF9qv5V8IWPiIgGb2sPgAT2AgswEcE-Uvme3qn5pHEJk4pnggdble8gjE00CU-Ivrada-GoBlJYEVHhUtCTUAElGTgYf1AwEMkRAoQKThBZMTzKgk8FNgEZATUoLJgJKCoRwqcgzUAAO4MA9zoJ4hbnrD_84qTLxD5NztuKw5OMiKTxq8iJDOIhoSchA963tYQ32AzowC3jfVERTs2XVY1vsL0162oZcpZ7ty89Dk58w5FVaB1qw4VAU2XhiDeRhk0F133Un7WL7x9e0YJKRk_ieNxuRbjdmuD_g4FHB_V6hYQzdBzy4wBpneMxCo2PaQpMxdhdlsyioqeGSUHrgIqO25F-Bv0Y8gPqKTwKHlBYeHEQUlKQIVKu2f0cu7SOAAx8ROTUlhYqAipzEd1s3GS0iClDhIKSmpQQIWkRUFKAioAUdLiUiMtACTw7UR6weoIlg4SG-_wTpkol_a_ieZjF9f2JsEz0VwjoKlD93E1wREnxS7rv0bQn9AS77ggDjAfYNiHkU4rGOA_YS7YPfvZo53R4ACfsSz9VHpX42f1wMxE2j6t36_8v8z6KcL_OCgxT2lf_jpZAJzUOc6PPePzqM_TqCT9-ej7iTQKXv6EujHnjeY9jnHM5hZ3nTHJbnMa6iTpH2XL3CDGnp_rkrZU6py8jDip6eD7z3HnmfkTzVeiAReKqDubDwrKz-MdKePhehHwf4z7Wlywea4K6-tN_8-Yd3FES8WUMZ6v0Us1SLdSVY4JJCTlXPNs7mAv5nDs_JJ7lPIUyCzKMD-nJdemg9E3CmthyP_5QRe0pC_WD0YPFfS9HfP8W-CUw8cBT1mMM_KhE8C_-ty_pffJeRd99mfpsnpqHocNWUZzzeF_gv67y71EeKniWokIANz9dkFIgB-RGkL9koDp8Cf5daOja5h3Zd9i1JvND9uvH0dFAF6zj6lcYXGFcwfZs9G1AjR4ryehkcoFYpiFwVqqhpUJjg_gZ8Yjpmw96MxtuITt7gfnrrMANqGpUJ07PngE2w7sd438yTkHqtwD4yFywW4k0MzY8cRL-ulJ79325FJ0wCcFDlvOupE7jnI3tJ_o9Z44C5WOieA0RdZ9kbnXpwe1gutImPTuQ7ItLRkmBw3-PJQCf3qq7Fjmiuq6-vn8qgT-X2bDu4Ey3-Pp7gP7Y9rJ5CpsfNjhsPwo0XN_6cDuZdDeNXbLNEj_Hs8_An3rLoOStMASXBVqhYnD3_QHGAn8itcRy3cfBVstC8npOeF4DaOnf0vRH9s4J7rP6ojeAgvqR5xRvzK8OWAk2BWNYVFmRP4BeLe-POa-kOoL7Mftn53Fwx1dPGlzSMStQsCZV6uNzKRqRAoaUkv1NJCh8lMjD-eqY84ZsV5FTW6Ic2gjumMJ7WxRPnw19Sjzj3LUofFh13upentzwzHrDH0MMCoXmOjL_AYw_VS9NH_6E_rwJp4rejoaXzlGM8fVd80QU-Y_WnlIPoEbRgiQh74MnJ1e7qwPcAx8Nd3h5cOPse8cDJm0iuLYfmOX28FqjfaIKd0yeF_w375Itdp4D9cDmyeZDjfa7Bu1R6fPe8urjjqB_veCTtzc8h_2B_aauIJydAZ1jSKSHiNeVyw2DSK_ywmlx3dZ6aLB2-I1xCqAI7Z9osHc_8I1Pebd7SEIA01IO5UJ0aGbDy8-1x5nK9D-llpMXqR88HwYbCxSNfpTG_95n4uc-n0HKO0vlXTVxBzz19eOofsAchf1n1tMm5EkZwZFEz8n7XKRa-53oQ5FxFuTZ5Kv7PR_iNOTfd1TRZUadW3EMdlm478a7F7rR3d-6xjN3_bUzw9LE03Z_P85k_b9aDDf9h869w-xkRBRmYQAZoOGQkVNfDIXhPcXyt5VztiIiRSgNextWL5bGO9iB1Kib0f4v4ChTGrK1Knp3v4ubko7gs5dJWb2szJguWfh_PPi7b6WiZB3Zi3b9k8Dre1F-G7FIvg1-NHCVKWqQo_3erqD10PiGiH-aFsYdQScsL3yW9Le8pE3UF3owZ__ZX4qegj3uKglQalHuA84_Oh5p4Xs8diPh0Mxg4R038o30YG5BjHZ45Ei-KOEYJ4y3e_DC1Ox2xw6BEB--HRQGCe9TjyUTPkWcGqm77Lbx7PwOv1ImjOVsbCaZo4qr2zaNBatJzOoCo5yKwWejXeN_wXzRg2s9vmT49JW_krqQSJbzh7YDrH7H9mo9geIK-oLqaks60ZoMwu0mz48X-ApCtGJ7J7C4oXN_KX95l49pK9aD5kw_vaHoognJVxOWLANMaQPx9uagPvT-hC5D5B4D7vzYc9fHx9PGFJnvecZZqDitxJjvtmuThhHmpr4kOuCto8v0xeeG1aZi7FU-ZDrqmCS_sqxHObCrcvvz9QNWr4e9sJ9wss674S3-EFX8N7Snrdd4WlL5yHVzRZ9dP2Uug3jJwgL0Sqv6UeTT1cJa2GByHMD3IPZ1j3cWBeZcdO6YTaDoyvGLhID7T4-77-0S5l2Bct99xvlw-OTBTEKCft8dUrqJOinVUsqW7CWqZgnlz9YNx4xcA3So_l2fP3rb1BDZXXSbRoZ3sPdxA9u3IP_rGSo0zfHYhw1XcedhKKsgdNxJdyPBcP_hzdvOXU_vdq_oEfECoi_AQddfUHUyVBWWAxL1j-HXmsNNBnz98--KA3u07rAxzUCYwNT3G5TJ_e6N43Tm1Cq20J3QKCt_51OXDq4ejMtFAToBujOvK9XFImuozADEZKUoTg922f4-LF8tzPa0C9qrTMVb2wSK0e3GEl90LO27rSBnv1neTd-ZkB47Hs55-_Xg5r0x8rv5cV6mrApPzYgqH4C44eCeyu3UWveZuTwOtsCtp99EVkYJHcNEl32i8VjsbHdsJJ76SzhmzsB2QzD2qfzlRjdQup8duOA5fd7yFfvTy9Fax34a_7hwItfepuwhr2eYS0eMsggnvcC6EdmPrVX0o6R_sW_wCcAnp6rwQGGHtBukL1dCSHbMR7-Q10zxW4579M1XNJ_zbvfIIqA8Oez2HYfRjX6fpeTaTfsFHCFaNlxBjn193DeRw_dAXTL_JP9ESqJdiN2ViZ0zDPsClqXvBxL7d7UODasBMmT3vPR7v-EPd1t4EuLb5Vz2hPo1cYxJMSIy_IOfOpEyY5-HOjYKbh45htcbDvrww2xr7WrRfP6StTLz15l7PEn9GvEFvnCgLsIMlRop_rdQGPe8g6k72x3P8mi3qcnbEdSwW37yXnu1BmX-eAnlwyuHzI-2tgptVb8dD38n78wjx5XbJba3CmE5YgqXune0uGO0_YEc9xJcVCZ6lNf-DNL4Qkb14TbmPWh9gu9rf3v9UGs5dCLeR-egZ6HM2VNTtLeFvybyr46EqMjzloPxX5MeWW1KH_FAYkfXmTnbasFJCYdeCx178rfkNulvBXcw7YZf7Eel40J8pqY2ZElDHJAZm2Es7ZEM7UK4zFpy3mqXUHSlAqUvg5p-hAs5M8led8Gee5h7tzrfF3ABEcVl_McDNWbDGuh1G_hALXF67LtfYx886JnY_36bcjpQD1NwDt597iIKlfRj28zD-hOZy2eHT5OEffrlbDZ9Ryyv5b3o07iaqeYNvhewfeRB8bawx3PrK7cvEnN1LdkRndpb1xfhT-d2hypAAwQ2985puFl5nZQ876fEpNvwE-v9p3rW_4A8v2p3kYc0Ih-mDm7AJPm6YTX_r0RWKrkqCBUBIBwF-l1HnhFxYQcpx7bvbfv7bbRTWxRDbMC5T9-j27QZpShK_vOZ4dseDdH1aXjj7SWk-2GMD1XYAe9oGaYgTa5sUa7Gj9CCulxtvB7tf9eMQe6DsaNjFELqTv3hsnNxTqrj1WJ9JStzVsIpFUgdqi2f52VMqWBv36Xkhw7m-QM4dapE1fzrFjp-32es-fFpXTC50v99JJdyTYy6FvRmH19C9vO9E&uniformat=true&callback=Ya%5B2535925680512%5D
IP 213.180.204.90:0
Hash a2afd4c4634a5476d6789cf278f9158e
7cdeee27bf530587d1eb2d8252933695d85b06d9
920e1fa43e1f271cca3448212b174c112552963a260ed4e0461943f53fd88ffc
GET /meta/466353?target-ref=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&pcode-test-ids=657519%2C0%2C69%3B649714%2C0%2C68%3B653341%2C0%2C91%3B656644%2C0%2C71%3B658042%2C0%2C47%3B649817%2C0%2C33%3B652291%2C0%2C26%3B652457%2C0%2C68%3B651300%2C0%2C25%3B657775%2C0%2C78&pcode-flags-map=eJytWF1v2zYU%2FSuDn4dNX5TsvtESbRORRJWk4jhFQbitlwVI0qFNhg5F%2F%2FsOJVmRHIduigB9SA3dw8v7ce65%2FD7hy1JIZgquFMtMRjU1FZW0UGYhpDnnGROGlyYVxVxM3rz7Pvl3e%2FOwm7yZ7L79M%2Fl9cr%2F7es8%2F4b9k5kWETH68%2F31yTpWR7G3NlDbnBa3MQorC0EyN7LWs2RAg9pNg6vUAGVd0njN4wNZ0znOuN4aW8HDN8txoSdMzXi5NITI2glUMH4ky35i65G8Pjghnnjfrj8gFzcxS4mujCgrUismUldrtZhT5YdhjwHxDlaaap%2BacScVFOTJPIrdxrZh6RFAyfcnhMDaSL1cIM1e8C5LKhbYZo9VJrND3G6w1z5ZMm0zStVlwibQtUAHM8IIumSvpMQlJEDUYrOzSNSwY%2FLHgJdcMNZWeqRU8W3O9ErU2FPWmlRucxNPwxeCvgdwUgxRZnWr19JiXQTNAvrCXBiA2zSiOxscj5RWTmCT%2B2DaJgkdbVHgqGYrrnJmMaZZqQJh907OMU2Q8ZydaE5ix32Oyi8qUbG0UOtAgl0rjBNyRX5zGIUnbf4WAQ3Aup3OGdhamA3aHpTffV3%2FvBv454utwBCxheYDJJke0GHlw%2F%2BVhNzCLgikYpDXD4UrJptEKp9cDI9xXMYaYzRWTSOfY7G774WY3sgzjYJY0logtKLo0K9a0e6ndR0YknLX5SkVdahvfi5V0mkyTadfJG9AsuzCyNpkoKC%2BdrO8lQRi3KRm30KLOc4XSY257PwxCr7%2FiXIozxAfXAzfyzG2ZkGl81GE7O7Tkc6d54Htxe99LVgaNu6CPDPxxkvVI5EfdpGps96NqLqStI0kzXqvffhJhQ63frcPgnTXdOKmLRGHSpTZbVBizqhIlalHzgqEVR6aB53lj28gL2ztXKeYmMgXT0slnJCKA6ap3IRBl1ozN7rxTLYsjkyR4as4XtvnXltxOVcgzCHsHzmlej7IVesetc0ZlCb0A3junktODewejQwl0QhtliCFlmRK6qA82kxJckYvlEIGM7Kde1EatklxIO5fnm0bLVEK6Ax4ncUcX9nNTCggDaAReLJ1mSQC7xkypyqQ0XTHr4TFN43ujECXEn7VVAQZMO6uDFjggQjKdBqQN6774My4xXEyqnDRDZn4yHbQdV3AV0YQeSK2bynXoLCSdYNnbNq2qek1R0SyDKHSDRKTLTEON6Fe9qZgJ3V6DHsmgBguZDiSX%2B7hZEj9raaVnmvP07MTpe4yizjWf07KE2xhcCw7Jzu0lFjR1U9ZsGiTJwI8OpCVtjAd0VJXTzRwSx9KCliLPDwfUwTT2gihsa2Ap6Txwf4s%2B9B6%2FNYpfjvwlfuC5vj9Cbz55xmJfHCvWjHXJMqYgeJz%2B%2BSSIW2urKCRboNdXthN46rabht0UQdAgnQvb5hIrSKcnKsnm7jkWYxAF%2FqiVoC0k6hpzG02MfDyOUkgOt0LyZ34UHRvHVq9086nZxiCR9WGrPEHDbPbbsm%2BVogVpJ8cLzZ93ph2Wv%2BSTXopX9ShjC4r%2B2nvWbsE%2FCWerBi2dzwWV7nRbm07wPKaVVpUttiUu4E5v4M%2FIqFZWXDeFNgBDuZ9p4a6TMAmC0ZaSVkW3DvTrgnJTOZbpsNMwPUb66xiNim%2BoWIq1ZaQVxuYlmIjmTgQrkoljldtn9WVbXES8uKXc0gpDRLiguuVJWtmbeZE%2Fde8qfhAMtRYX2HWwWaOt5cZtGUcHSVYFldq8rVnN7MVOkQCJ45j0W0paK43m6gh%2F3yb2wQdXSlctx5wqPOiZfTzaxLZRLuiFgaxSR19OIm8c0lniu54KnlbwiZx9vL85eIsII99xALi44HXxyqgDt7WoEc%2FXhVc1FsXNK4NuaP%2FLa8Ji8P4yol3oK6GshmtetSA%2FDBR7%2F4NiGLAHL4ixd1j2%2B9l3BKx1eczNT58FRhC8tDLYKAjws81%2Byxsj2PXnoE%2BioF9n7X6FM1INgp6Pe%2FbL54e7Twf9MfWTvZTozZTe5GxZ84NXzo%2Fbm5vPD%2Fdfx4cHwWysJNrtHwqoFee8xKA5EYEgIq0XOb3ctE%2BkDYENzb5P%2Ftrdf%2Fy72H65ur7rlNjt5w%2FXNzsFx67vriZvgh9jMgy7JXJIZfYdaZ5bxZlj%2Fx0e8G5yu72%2B%2BePLA3z7b3v3afcNf%2F95fbu92n0d%2FXS1vcUv74%2Bf1fh9%2BMwSkySBlh8%2FBiWNuv%2FxP1rgvs0%3D&pcode-icookie=NkWqvYKR%2FLKh4PPNVPYBp45aSR5N6ZyqM57DkHsgndNbrSDKq9bZ%2FRXu48iCgsRO76TQr5pFZlZzt6YH3WEbA6QLAMQ%3D&imp-id=7&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=201760383696898&ad-session-id=429911664282458872&target-id=80708169&tga-with-creatives=1&top-ancestor=https%3A%2F%2Flesnik.life&top-ancestor-undetermined=0&pcode-version=657775&pcodever=657775&flash-ver=0&available-width=711&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A712%2C%22h%22%3A0%2C%22width%22%3A712%2C%22height%22%3A0%2C%22visible%22%3A0%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A56%2C%22top%22%3A1224%2C%22fontFamily%22%3A%22ys%22%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo4NTF9CjKiFI2jOI4BEFjHKdBVFX_dh07sZh7sG9q_7u2efP-8f7VroEfn2-ovu66utdGm3bJErTHgqNLpxzs-IQ_1RFBv2DYLikWYGRN96xK1arTZfyKMGS0sAgooaCZhQWaxmQRMIpUlsTBVFg5LZvGYeEx8lYXNJPZAxGGxWQKVScRiP4C5LJlJyBKyOB5IGCoAEYOkAgwVKTklkIFJA6xhDEwULBA88HyVJWDxH94PBJWFfqDD9jAifNCwJCYhE0YAiQcjbUF_4flQP357WIFccJRZGEyYHqwZECwszz3cBwbdwxT7YeZhJaksTJbQQ8PDk8eExRJ6QAgfpoGBAg8OmB5WDzG-CEsB54EO24MTnUlIl57VYxrXQ-9hz31-SwsOD1Iuk4DF98AcxzMLmHiJuc_FhtfA3VMW92nJw4nYw4HzQDCYzPb8w_W8QyvDG4pPtQ8SJpEHFt8Tsc1aD0oA0xDzUAMLkmcqjwnjaE5o0uiTJaQDFbbF1Qy0yOsnRQ9O9jEK0sGIY1CKhy5UFg4TFA90uVuT4yEkeYDgGZ3IOxhLz59qy4NXQYJRm4hTvgYMTc3fglieMGEN4R0BPoeZQLoGhnGkwP0G5zGhP7iWpADPhOa5wd--IE5UlvC2TYvivJaemPCO1jDU7Y2Arz0EAfPUfHie-OFa3MRILbNAF8VZYvQIxYOF_0CHQLiDZdP_4v_h7jL2W_qJRPiF-KmlqMBjBc82PLMLCCPcn-IgjJ6eMn17SYu10A9OkocA-3jM1eACKJ5qcME7pfuG8BD1vY0EAQl8CsRIEFBRI0SMhISShIIKMXjO90jAXlgiAXthgogMIagqmBTUpKQACy48MlISWhIq-PAoqEmoaBFSgUENh4JEJaUkB52CagCQ9sGsPoApEdLSAA0ZMqQNeDDI4MKnJqElJaEmR0gNF6EKUPBowYRDSkIGn5aCDHQyFREVCQkVXFq4VKTwyMhJKUGjooVPRQ4HXMRIEFKC1hBAAAYVFUIPQxIqcJcVVHAbsA802gIqFTVcMCgBckETYU9JTu6hDVBwqeEF2OhB7ak_A-gATE5doIdPTUlO64GhBJ2ahJKMvEEIh6LA77mgevA3yykoESOhRswCMF9qv5V8IWPiIgGb2sPgAT2AgswEcE-Uvme3qn5pHEJk4pnggdble8gjE00CU-Ivrada-GoBlJYEVHhUtCTUAElGTgYf1AwEMkRAoQKThBZMTzKgk8FNgEZATUoLJgJKCoRwqcgzUAAO4MA9zoJ4hbnrD_84qTLxD5NztuKw5OMiKTxq8iJDOIhoSchA963tYQ32AzowC3jfVERTs2XVY1vsL0162oZcpZ7ty89Dk58w5FVaB1qw4VAU2XhiDeRhk0F133Un7WL7x9e0YJKRk_ieNxuRbjdmuD_g4FHB_V6hYQzdBzy4wBpneMxCo2PaQpMxdhdlsyioqeGSUHrgIqO25F-Bv0Y8gPqKTwKHlBYeHEQUlKQIVKu2f0cu7SOAAx8ROTUlhYqAipzEd1s3GS0iClDhIKSmpQQIWkRUFKAioAUdLiUiMtACTw7UR6weoIlg4SG-_wTpkol_a_ieZjF9f2JsEz0VwjoKlD93E1wREnxS7rv0bQn9AS77ggDjAfYNiHkU4rGOA_YS7YPfvZo53R4ACfsSz9VHpX42f1wMxE2j6t36_8v8z6KcL_OCgxT2lf_jpZAJzUOc6PPePzqM_TqCT9-ej7iTQKXv6EujHnjeY9jnHM5hZ3nTHJbnMa6iTpH2XL3CDGnp_rkrZU6py8jDip6eD7z3HnmfkTzVeiAReKqDubDwrKz-MdKePhehHwf4z7Wlywea4K6-tN_8-Yd3FES8WUMZ6v0Us1SLdSVY4JJCTlXPNs7mAv5nDs_JJ7lPIUyCzKMD-nJdemg9E3CmthyP_5QRe0pC_WD0YPFfS9HfP8W-CUw8cBT1mMM_KhE8C_-ty_pffJeRd99mfpsnpqHocNWUZzzeF_gv67y71EeKniWokIANz9dkFIgB-RGkL9koDp8Cf5daOja5h3Zd9i1JvND9uvH0dFAF6zj6lcYXGFcwfZs9G1AjR4ryehkcoFYpiFwVqqhpUJjg_gZ8Yjpmw96MxtuITt7gfnrrMANqGpUJ07PngE2w7sd438yTkHqtwD4yFywW4k0MzY8cRL-ulJ79325FJ0wCcFDlvOupE7jnI3tJ_o9Z44C5WOieA0RdZ9kbnXpwe1gutImPTuQ7ItLRkmBw3-PJQCf3qq7Fjmiuq6-vn8qgT-X2bDu4Ey3-Pp7gP7Y9rJ5CpsfNjhsPwo0XN_6cDuZdDeNXbLNEj_Hs8_An3rLoOStMASXBVqhYnD3_QHGAn8itcRy3cfBVstC8npOeF4DaOnf0vRH9s4J7rP6ojeAgvqR5xRvzK8OWAk2BWNYVFmRP4BeLe-POa-kOoL7Mftn53Fwx1dPGlzSMStQsCZV6uNzKRqRAoaUkv1NJCh8lMjD-eqY84ZsV5FTW6Ic2gjumMJ7WxRPnw19Sjzj3LUofFh13upentzwzHrDH0MMCoXmOjL_AYw_VS9NH_6E_rwJp4rejoaXzlGM8fVd80QU-Y_WnlIPoEbRgiQh74MnJ1e7qwPcAx8Nd3h5cOPse8cDJm0iuLYfmOX28FqjfaIKd0yeF_w375Itdp4D9cDmyeZDjfa7Bu1R6fPe8urjjqB_veCTtzc8h_2B_aauIJydAZ1jSKSHiNeVyw2DSK_ywmlx3dZ6aLB2-I1xCqAI7Z9osHc_8I1Pebd7SEIA01IO5UJ0aGbDy8-1x5nK9D-llpMXqR88HwYbCxSNfpTG_95n4uc-n0HKO0vlXTVxBzz19eOofsAchf1n1tMm5EkZwZFEz8n7XKRa-53oQ5FxFuTZ5Kv7PR_iNOTfd1TRZUadW3EMdlm478a7F7rR3d-6xjN3_bUzw9LE03Z_P85k_b9aDDf9h869w-xkRBRmYQAZoOGQkVNfDIXhPcXyt5VztiIiRSgNextWL5bGO9iB1Kib0f4v4ChTGrK1Knp3v4ubko7gs5dJWb2szJguWfh_PPi7b6WiZB3Zi3b9k8Dre1F-G7FIvg1-NHCVKWqQo_3erqD10PiGiH-aFsYdQScsL3yW9Le8pE3UF3owZ__ZX4qegj3uKglQalHuA84_Oh5p4Xs8diPh0Mxg4R038o30YG5BjHZ45Ei-KOEYJ4y3e_DC1Ox2xw6BEB--HRQGCe9TjyUTPkWcGqm77Lbx7PwOv1ImjOVsbCaZo4qr2zaNBatJzOoCo5yKwWejXeN_wXzRg2s9vmT49JW_krqQSJbzh7YDrH7H9mo9geIK-oLqaks60ZoMwu0mz48X-ApCtGJ7J7C4oXN_KX95l49pK9aD5kw_vaHoognJVxOWLANMaQPx9uagPvT-hC5D5B4D7vzYc9fHx9PGFJnvecZZqDitxJjvtmuThhHmpr4kOuCto8v0xeeG1aZi7FU-ZDrqmCS_sqxHObCrcvvz9QNWr4e9sJ9wss674S3-EFX8N7Snrdd4WlL5yHVzRZ9dP2Uug3jJwgL0Sqv6UeTT1cJa2GByHMD3IPZ1j3cWBeZcdO6YTaDoyvGLhID7T4-77-0S5l2Bct99xvlw-OTBTEKCft8dUrqJOinVUsqW7CWqZgnlz9YNx4xcA3So_l2fP3rb1BDZXXSbRoZ3sPdxA9u3IP_rGSo0zfHYhw1XcedhKKsgdNxJdyPBcP_hzdvOXU_vdq_oEfECoi_AQddfUHUyVBWWAxL1j-HXmsNNBnz98--KA3u07rAxzUCYwNT3G5TJ_e6N43Tm1Cq20J3QKCt_51OXDq4ejMtFAToBujOvK9XFImuozADEZKUoTg922f4-LF8tzPa0C9qrTMVb2wSK0e3GEl90LO27rSBnv1neTd-ZkB47Hs55-_Xg5r0x8rv5cV6mrApPzYgqH4C44eCeyu3UWveZuTwOtsCtp99EVkYJHcNEl32i8VjsbHdsJJ76SzhmzsB2QzD2qfzlRjdQup8duOA5fd7yFfvTy9Fax34a_7hwItfepuwhr2eYS0eMsggnvcC6EdmPrVX0o6R_sW_wCcAnp6rwQGGHtBukL1dCSHbMR7-Q10zxW4579M1XNJ_zbvfIIqA8Oez2HYfRjX6fpeTaTfsFHCFaNlxBjn193DeRw_dAXTL_JP9ESqJdiN2ViZ0zDPsClqXvBxL7d7UODasBMmT3vPR7v-EPd1t4EuLb5Vz2hPo1cYxJMSIy_IOfOpEyY5-HOjYKbh45htcbDvrww2xr7WrRfP6StTLz15l7PEn9GvEFvnCgLsIMlRop_rdQGPe8g6k72x3P8mi3qcnbEdSwW37yXnu1BmX-eAnlwyuHzI-2tgptVb8dD38n78wjx5XbJba3CmE5YgqXune0uGO0_YEc9xJcVCZ6lNf-DNL4Qkb14TbmPWh9gu9rf3v9UGs5dCLeR-egZ6HM2VNTtLeFvybyr46EqMjzloPxX5MeWW1KH_FAYkfXmTnbasFJCYdeCx178rfkNulvBXcw7YZf7Eel40J8pqY2ZElDHJAZm2Es7ZEM7UK4zFpy3mqXUHSlAqUvg5p-hAs5M8led8Gee5h7tzrfF3ABEcVl_McDNWbDGuh1G_hALXF67LtfYx886JnY_36bcjpQD1NwDt597iIKlfRj28zD-hOZy2eHT5OEffrlbDZ9Ryyv5b3o07iaqeYNvhewfeRB8bawx3PrK7cvEnN1LdkRndpb1xfhT-d2hypAAwQ2985puFl5nZQ876fEpNvwE-v9p3rW_4A8v2p3kYc0Ih-mDm7AJPm6YTX_r0RWKrkqCBUBIBwF-l1HnhFxYQcpx7bvbfv7bbRTWxRDbMC5T9-j27QZpShK_vOZ4dseDdH1aXjj7SWk-2GMD1XYAe9oGaYgTa5sUa7Gj9CCulxtvB7tf9eMQe6DsaNjFELqTv3hsnNxTqrj1WJ9JStzVsIpFUgdqi2f52VMqWBv36Xkhw7m-QM4dapE1fzrFjp-32es-fFpXTC50v99JJdyTYy6FvRmH19C9vO9E&uniformat=true&callback=Ya%5B2535925680512%5D HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
access-control-allow-origin: https://lesnik.life
x-xss-protection: 1; mode=block
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-yandex-req-id: 1664282461128336-113990750229523641700114-production-app-host-sas-pcode-255
last-modified: Tue, 27 Sep 2022 12:41:01 GMT
date: Tue, 27 Sep 2022 12:41:01 GMT
set-cookie: yabs-vdrf=A0; domain=an.yandex.ru; path=/; expires=Tue, 04-Oct-2022 12:41:01 GMT
i=xGMUxjwTRienDdF3i5uCtYSNxXHbWThYQeaTv501MYtuhObqgNvBe1Nlfa59SpVrM0meVdsm5PQLj4EGVw0s3hHZ9+c=; Expires=Thu, 26-Sep-2024 12:41:01 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
ssr: true
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 12:41:01 GMT
X-Firefox-Spdy: h2
mc.yandex.ru/watch/466353/1?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/466353/1?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 70c00ecfa5024cc78a321e883348c887
ef27d1356c60cc1f827ff9937e7e8e7bc3f2f819
89620a0d6386e74dcdb858b17b36643c842b5b0ea18799f9b11ac711839cad20
GET /watch/466353/1?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Referer: https://lesnik.life/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 27 Sep 2022 12:41:02 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:02 GMT
last-modified: Tue, 27-Sep-2022 12:41:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sjsmartcontent.org/wns/event
212.109.217.26200 OK 65 B URL HTTP/2 sjsmartcontent.org/wns/event
IP 212.109.217.26:0
Hash 54a553e933a1a4e975a78654948a2389
bc9ea0bd1ff7f174b4969761a44847b133fc3b43
3fb630915753f8f1172aba1bc75864ade06aaa4209b680322f8e3451e0b445b5
Analyzer Verdict Alert fortinet Malware
POST /wns/event HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 757
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Cookie: wnid=2d91090c5e689d8b94a46cb7836687fe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
sjsmartcontent.org/wns/event
212.109.217.26200 OK 1.5 kB URL HTTP/2 sjsmartcontent.org/wns/event
IP 212.109.217.26:0
Hash 4fca75eae40062755a0d2641f33dcded
08a78c2afd771c99d00fafb356f0c07b04d6e533
5eeeaff6597f2f2f6ede224e4dc33af7d8f08c14c66bd357d6d6a90907502de8
Analyzer Verdict Alert fortinet Malware
POST /wns/event HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 321
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Cookie: wnid=2d91090c5e689d8b94a46cb7836687fe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:41:00 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/466353/1?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/466353/1?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/466353/1?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Referer: https://lesnik.life/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 27 Sep 2022 12:41:02 GMT
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:02 GMT
last-modified: Tue, 27-Sep-2022 12:41:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/466353?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/466353?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/466353?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)clc(0-0-0)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/466353/1?wmode=7&page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124059%3Aet%3A1664282460%3Ac%3A1%3Arn%3A1005906356%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 27 Sep 2022 12:41:02 GMT
access-control-allow-origin: https://lesnik.life
set-cookie: yandexuid=6507256121664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6507256121664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=160671431664282462; Path=/; SameSite=None; Secure
i=N5x67ZxTPlwg2+1hvU4MFxMFv1zVqN/nk7Ann7Ricj7QXb2dYZCjCou8P1SmBDrh9171XhQsk3H4tpX/oSPe3P3t+W0=; Expires=Fri, 24-Sep-2032 12:41:00 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695818462.yrts.1664282462#1695818462.yrtsi.1664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:02 GMT
last-modified: Tue, 27-Sep-2022 12:41:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ext-strm-itt05.strm.yandex.net/vh-canvas-converted/vod-content/5733388825860668281/c7658351-f5139f3c-10f9513c-3a6628c0/webm/VP8_426_240_500.webm?vsid=f14ac2fd6c8760cc0f31de0103a806573ab695beece2xVASx7775x1664282457&noredir=1&lid=1529
185.70.202.7206 Partial Content 704 kB URL HTTP/2 ext-strm-itt05.strm.yandex.net/vh-canvas-converted/vod-content/5733388825860668281/c7658351-f5139f3c-10f9513c-3a6628c0/webm/VP8_426_240_500.webm?vsid=f14ac2fd6c8760cc0f31de0103a806573ab695beece2xVASx7775x1664282457&noredir=1&lid=1529
IP 185.70.202.7:0
ASN #6762 TELECOM ITALIA SPARKLE S.p.A.
File type WebM\012- EBML file, creator webmB\20\012- data
Size 704 kB (704101 bytes)
Hash a226f4bb4d6237eee49a30ed47aff7ea
a438db13d234b1c2d16cbb816e102760561a2400
a4d5faac2e5ec5273ce8f659a257a50ffe48d0a02def268e9866d1c837347780
GET /vh-canvas-converted/vod-content/5733388825860668281/c7658351-f5139f3c-10f9513c-3a6628c0/webm/VP8_426_240_500.webm?vsid=f14ac2fd6c8760cc0f31de0103a806573ab695beece2xVASx7775x1664282457&noredir=1&lid=1529 HTTP/1.1
Host: ext-strm-itt05.strm.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: https://lesnik.life/
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx/1.18.0
date: Tue, 27 Sep 2022 12:41:02 GMT
content-type: video/webm
content-length: 704101
etag: "a226f4bb4d6237eee49a30ed47aff7ea"
last-modified: Sun, 06 Feb 2022 20:38:03 GMT
x-amz-version-id: null
x-robots-tag: noindex, noarchive, nofollow
x-strm-log-split: 9
x_h: strm-ams05.strm.yandex.net
x-strm-request-id: ef865783bf460c18
x-request-id: ef865783bf460c18
expires: Tue, 27 Sep 2022 12:46:02 GMT
cache-control: max-age=300
report-to: {"group": "network-errors", "max_age": 1200, "include_subdomains": true, "endpoints": [ {"url": "https://dr.yandex.net/strm", "priority": 1}, {"url": "https://dr2.yandex.net/strm", "priority": 2} ]}
nel: {"report_to": "network-errors", "max_age": 1200, "success_fraction": 0.005, "failure_fraction": 0.05, "include_subdomains": true}
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range, X-Client-Timestamp, X-Strm-Session
access-control-expose-headers: Date, X-Strm-Session, X-Estimated-RTT, X-Estimated-Bandwidth, X-Connection-ID, Age, X-Server-Time-Ms, X-Plg-URL
x-estimated-rtt: 29975
x-estimated-bandwidth: 1452560
x-connection-id: 38216405
x-server-time-ms: 1664282462529
content-range: bytes 0-704100/704101
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 840edfc4f80291f00feb5355a251c862
222a7cb48f411409d08ef17d05187fb36bfbe8e8
3e3838170391df206106994c71117661fd18632b7a2fecc6f17bfb6fc71b2007
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 01 Oct 2022 10:01:57 GMT
ETag: "222a7cb48f411409d08ef17d05187fb36bfbe8e8"
Last-Modified: Tue, 27 Sep 2022 10:01:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2677
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144fb0a873b50f-OSL
log.strm.yandex.ru/log?VAS=656571&event=PrioritiseMediaFiles
87.250.251.15200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=656571&event=PrioritiseMediaFiles
IP 87.250.251.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=656571&event=PrioritiseMediaFiles HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 14081
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Tue, 27 Sep 2022 12:41:02 GMT
timing-allow-origin: https://lesnik.life
access-control-allow-origin: https://lesnik.life
x-request-id: 1664282462866847-15324449351927926716
X-Firefox-Spdy: h2
yastatic.net/q/set/s/rsya-tag-users/bundle.js
178.154.131.215200 OK 94 kB URL HTTP/2 yastatic.net/q/set/s/rsya-tag-users/bundle.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 152a0a3db0fa69a961e145ada4aaf21a
5d984fa83c57f6e6d284369a21ef8c4cd5b24378
149cd014a3a99bdbb1457319d927b40a633e2051fd76d69f34ee81bd0bfd67e9
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 27 Sep 2022 12:41:03 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"82bdc8db563d3e71c35534315f8a9fd5"
expires: Fri, 30 Sep 2022 00:39:22 GMT
last-modified: Fri, 29 Oct 2021 11:19:01 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: 5aa857ab63df5ad0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 9935d08daddd1b04128441b5cdaa613f
c43b234087fa4ed43a38a8b313245fe924295da1
bb1ce315a52aebf0659ec19eddc2cffa2949780a7e7d54fedb72b98876299601
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 12:41:03 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 01 Oct 2022 10:02:18 GMT
ETag: "c43b234087fa4ed43a38a8b313245fe924295da1"
Last-Modified: Tue, 27 Sep 2022 10:02:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2788
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75144fb75af7b50f-OSL
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 27 Sep 2022 12:41:04 GMT
access-control-allow-origin: *
etag: "632d6d03-2b"
expires: Tue, 27 Sep 2022 13:41:04 GMT
accept-ranges: bytes
last-modified: Fri, 23 Sep 2022 11:23:31 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d35907564b797138268bff992c44144f
8463db84ee87c18712c0c4aeed5e6dce7c863e32
ed6c051524cd6fe2afb14abed997680b073933c3b34afdc68accf5661798c388
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d35907564b797138268bff992c44144f
8463db84ee87c18712c0c4aeed5e6dce7c863e32
ed6c051524cd6fe2afb14abed997680b073933c3b34afdc68accf5661798c388
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d35907564b797138268bff992c44144f
8463db84ee87c18712c0c4aeed5e6dce7c863e32
ed6c051524cd6fe2afb14abed997680b073933c3b34afdc68accf5661798c388
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d35907564b797138268bff992c44144f
8463db84ee87c18712c0c4aeed5e6dce7c863e32
ed6c051524cd6fe2afb14abed997680b073933c3b34afdc68accf5661798c388
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1308334927134%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124101%3Aet%3A1664282462%3Arn%3A42684507%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Ast%3A1664282462&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
87.250.250.119302 Found 236 B URL HTTP/2 mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1308334927134%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124101%3Aet%3A1664282462%3Arn%3A42684507%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Ast%3A1664282462&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3119d15afe058933347c7109e8a36128
c95d1cd0df5b623403af7502b53caa6a39982a1c
384905b3b78e83705c35c89f15113670f9ddec7afdeb8b5cbfd2d953cd5ed326
GET /watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1308334927134%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124101%3Aet%3A1664282462%3Arn%3A42684507%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Ast%3A1664282462&t=clc(0-0-0)aw(1)rqnt(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1308334927134%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124101%3Aet%3A1664282462%3Arn%3A42684507%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Ast%3A1664282462&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
date: Tue, 27 Sep 2022 12:41:04 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yandexuid=9271592791664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9271592791664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2269886901664282464; Path=/; SameSite=None; Secure
i=s2IFGH+BhS1951itmiE+mxE+RrcCf4NUxCKEC7fSbWkgzCRUZItoRWUei4/2Gwm287FjyJN8J/NpQteJMgDTdXVs2bA=; Expires=Fri, 24-Sep-2032 12:40:57 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695818464.yrts.1664282464#1695818464.yrtsi.1664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:04 GMT
last-modified: Tue, 27-Sep-2022 12:41:04 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
142.250.74.130302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=YO8yY9HpA9OS78EP7oCLyA0&random=884532166&sscte=1&crd=CJqqsQI
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yandex.ru/set/s/rsya-tag-users/data?referrer=https%3A%2F%2Flesnik.life%2F
5.255.255.80200 OK 16 kB URL HTTP/2 yandex.ru/set/s/rsya-tag-users/data?referrer=https%3A%2F%2Flesnik.life%2F
IP 5.255.255.80:0
File type JSON data\012- , ASCII text, with very long lines (1654)
Hash 511e319bf1834c20a395e0300d5bdab6
2bb233449ca7280725c1a49ea17283d8badcf700
cf7e0e3382581059df82aa1ba5c22c75fbe2d87834ba5035e147c98a32b9378d
GET /set/s/rsya-tag-users/data?referrer=https%3A%2F%2Flesnik.life%2F HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Origin: https://yastatic.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 12:41:03 GMT
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Thu, 26 Sep 2024 12:41:03 GMT; SameSite=None; Secure
is_gdpr_b=CPe0cBCvjAEYAQ==; Path=/; Domain=.yandex.ru; Expires=Thu, 26 Sep 2024 12:41:03 GMT; SameSite=None; Secure
_yasc=Rc2qm9Q+yYsWXXHJBqDxi3Hn3d8vmLP75PanD67dVs499K3o; domain=.yandex.ru; path=/; expires=Thu, 27-Oct-2022 12:41:03 GMT; secure
i=1b/FCC+SX1/cTw/ahQLzeQejtv0hU4W7U5PxwSBaiJo4SvLRUROKDTNr0zkGYdjR/MEjJOV6urZwB+WBf9ruosouzhI=; Expires=Thu, 26-Sep-2024 12:41:03 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: public,max-age=300
content-encoding: gzip
content-type: application/json; charset=utf-8
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0
142.250.74.130302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=YO8yY7WEBYfz6gSvzZ34DQ&random=1475921349&sscte=1&crd=CJqqsQI
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8cd97aaf3e95e1e9bbdf8b739727d7cd
858cf438048356fc972c737cc84e1439c18dec5e
18e601b130747b5b70afa4a4614e9b7d8c7f3df5cd72725e1488c5b411a452e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5b7b66f5886a12421c3f3970bbf49d5a
13a31565fb5b2f1e75d67ba1ce09dae339f1c0e8
3ed8ffa99cefdf81381912b426c0ab9091fb5888836665d9012435965f99feba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5b7b66f5886a12421c3f3970bbf49d5a
13a31565fb5b2f1e75d67ba1ce09dae339f1c0e8
3ed8ffa99cefdf81381912b426c0ab9091fb5888836665d9012435965f99feba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 12:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1664282461961&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=1202667169&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1664282461974&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=2089694237&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=884532166&crd=CJqqsQI&is_vtc=1&random=2868711100&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1664282461971&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=49054789&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1664282461965&cv=9&fst=1664280000000&num=1&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dlinux%3Bbrowser%3Dfirefox%3Bwinxp%3D%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Flesnik.life%2F&async=1&fmt=3&is_vtc=1&random=672165951&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=WEA-COCjoGMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1475921349&crd=CJqqsQI&is_vtc=1&random=2839156535&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 27 Sep 2022 12:41:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 471 B URL HTTP/2 mc.yandex.ru/watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
Hash 95f95fee6e94fb192e7c06459e3e3f8e
025638b85afcc833cd592c98cc941dd011d2526f
dbc8654990b37741f8e393d069054ae68d584c2496421892e814e7a8c45467fd
GET /watch/37412095?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr(6)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 27 Sep 2022 12:41:04 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yandexuid=9212455081664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9212455081664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=262179621664282464; Path=/; SameSite=None; Secure
i=5wfe+XnbWhNUCXhSb7X7FZqH5zct7/nzeOGH5uID3IVYxTfZF/NQ9kBAcG9oZQLcqpFUkaVoGy4GB/Kki63fuf89kCA=; Expires=Fri, 24-Sep-2032 12:41:03 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695818464.yrts.1664282464#1695818464.yrtsi.1664282464; Expires=Wed, 27-Sep-2023 12:41:04 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:04 GMT
last-modified: Tue, 27-Sep-2022 12:41:04 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash e7dc8871e658a7137f70125a39ee526a
e2b84ff58dddf6d6ba182efc90184b95a315bf30
f57b0f45426bd185a4318977336b54e7ef40c3dcc8f959ec2052cd66ec691fba
GET /watch/37412095/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Flesnik.life%2F&charset=utf-8&site-info=%7B%22extensions%22%3A%22%22%2C%22fromGoogle%22%3A%22false%22%2C%22fromCancel%22%3A%22false%22%2C%22loyal%22%3A%220%22%2C%22sbscrb%22%3A%22%22%2C%22p%22%3A%22%22%2C%22b%22%3A%22%22%2C%22fresh%22%3A%22%22%2C%22infected%22%3A%22%22%2C%22slow%22%3A%22%22%2C%22os%22%3A%22linux%22%2C%22browser%22%3A%22firefox%22%2C%22winxp%22%3A%22%22%2C%22old%22%3A%22actual%22%2C%22yabroAge%22%3Anull%7D&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A2%3Adp%3A0%3Als%3A1010627130472%3Ahid%3A752301409%3Az%3A0%3Ai%3A20220927124102%3Aet%3A1664282462%3Arn%3A1048800757%3Arqn%3A1%3Au%3A1664282462635461383%3Aw%3A0x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C0%2C%2C0%2C%2C49%2C0%2C422%2C422%2C0%2C70%3Ans%3A1664282459649%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282462%3At%3A&t=gdpr%286%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Tue, 27 Sep 2022 12:41:04 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:04 GMT
last-modified: Tue, 27-Sep-2022 12:41:04 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sjsmartcontent.org/wns/event
212.109.217.26200 OK 0 B URL HTTP/2 sjsmartcontent.org/wns/event
IP 212.109.217.26:0
Analyzer Verdict Alert fortinet Malware
POST /wns/event HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 391
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Cookie: wnid=2d91090c5e689d8b94a46cb7836687fe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Tue, 27 Sep 2022 12:41:01 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/event_confirmation
213.180.204.90200 OK 0 B URL HTTP/2 an.yandex.ru/event_confirmation
IP 213.180.204.90:0
POST /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 297
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Tue, 27 Sep 2022 12:41:01 GMT
access-control-allow-origin: https://lesnik.life
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27 Sep 2022 12:41:01 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 27 Sep 2022 12:41:01 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/466353?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/466353?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
GET /watch/466353?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)aw(1)rqnt(2)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lesnik.life
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/466353/1?page-url=https%3A%2F%2Flesnik.life%2Fblyuda-iz-gribov%2Fblyuda-iz-belyh-gribov%2Fsous-iz-belyh-gribov-so-smetanoj.html&charset=utf-8&cnt-class=1&hittoken=1664282462_40054ee302c5f2339e5c0acd88c67d12079b91bd30ccb346c739517c1651d4bb&browser-info=pv%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A303192636202%3Ahid%3A1056430336%3Az%3A0%3Ai%3A20220927124100%3Aet%3A1664282460%3Ac%3A1%3Arn%3A716834370%3Arqn%3A2%3Au%3A1664282460866713751%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1664282456288%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664282460%3At%3A%D0%A1%D0%BE%D1%83%D1%81%20%D0%B8%D0%B7%20%D0%B1%D0%B5%D0%BB%D1%8B%D1%85%20%D0%B3%D1%80%D0%B8%D0%B1%D0%BE%D0%B2%20%D1%81%D0%BE%20%D1%81%D0%BC%D0%B5%D1%82%D0%B0%D0%BD%D0%BE%D0%B9%20%E2%80%94%20Lesnik&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29aw%281%29rqnt%282%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 27 Sep 2022 12:41:02 GMT
access-control-allow-origin: https://lesnik.life
set-cookie: yandexuid=3924817931664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3924817931664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=994563541664282462; Path=/; SameSite=None; Secure
i=y2HZmpK9g8wohVekPcSsDYTNLCuXA89cBIGZjdlkMOUUF6oh8V6YW+NpqxN1pW14N5zf/mkrdAgsjl0ApmzPX9VaNr4=; Expires=Fri, 24-Sep-2032 12:40:56 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695818462.yrts.1664282462#1695818462.yrtsi.1664282462; Expires=Wed, 27-Sep-2023 12:41:02 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 27-Sep-2022 12:41:02 GMT
last-modified: Tue, 27-Sep-2022 12:41:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
allstat-pp.ru/587/6dfd88ad8c7d59046a90235ed6834c71c758820c.js
92.38.252.165200 OK 0 B URL HTTP/2 allstat-pp.ru/587/6dfd88ad8c7d59046a90235ed6834c71c758820c.js
IP 92.38.252.165:0
ASN #12695 LLC Digital Network
GET /587/6dfd88ad8c7d59046a90235ed6834c71c758820c.js HTTP/1.1
Host: allstat-pp.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lesnik.life/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.1
date: Tue, 27 Sep 2022 12:40:59 GMT
content-type: application/javascript
last-modified: Fri, 20 May 2022 13:05:02 GMT
vary: Accept-Encoding
etag: W/"628791fe-7290"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2