r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5669
Expires: Wed, 08 Feb 2023 16:17:15 GMT
Date: Wed, 08 Feb 2023 14:42:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14055
Expires: Wed, 08 Feb 2023 18:37:01 GMT
Date: Wed, 08 Feb 2023 14:42:46 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/TOB3ExjSLG4
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/TOB3ExjSLG4
IP
Hash 19d6d8a221d308fccb5fe862e58bb292
2d6855684c1e9ce751d3bacee76e6b4ffa0d806f
afb8adf6bb71954cb9a65f77878e76c6e89d78cd4abb53d864f75f9748264221
POST /s/gts1p5/TOB3ExjSLG4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 14:36:40 GMT
content-type: application/json
age: 366
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9971
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 14:42:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Gz2AuiTU9xpBpeHiSF5a4Eb2dSeFm3XJ+a+sKXG8RI5Cs6cP6U04+wIRyan1/xSc/twnty/LQ8c+/RfiiGmckg==
x-amz-request-id: 2B7NYWDX533GD2PN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 13:45:59 GMT
age: 3407
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/TOB3ExjSLG4
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/TOB3ExjSLG4
IP
Hash 19d6d8a221d308fccb5fe862e58bb292
2d6855684c1e9ce751d3bacee76e6b4ffa0d806f
afb8adf6bb71954cb9a65f77878e76c6e89d78cd4abb53d864f75f9748264221
POST /s/gts1p5/TOB3ExjSLG4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
goo.su/y6ivgs
200 OK 19 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 222d3fc548d3327640c5d38c42218a63
407e46656e5593778fd148bb8bd9eea17f99cbc5
94f82abc3154b5a75555b7f6a862e9e2a4aa4cfc74965ed9a33ee54427135508
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /y6ivgs HTTP/1.1
Host: goo.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.0.15
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IlJPL3o3ZDg0SEl6eFlReWpKSE81eVE9PSIsInZhbHVlIjoiWm5TODgxc3RkbHE4RHk5WFE0SDE3SktILzJqQ2hGZmRxOENLQllIVXJpVXdIaHozdVFGTkpiNElBOTcyV2JOemRxbGIxZnl5cEZnM0Q1Nk5UNSt5RWlKb3JIM1VjUW4yS0R3VENjMTA5UnhyQTN0cytpQk8zdFcra3FvK2FiK2YiLCJtYWMiOiJjMDYyZDkzN2U4ZjMzMTU5ODg1Mzg1ZTk1NzA3Y2Y1M2NkMDBmYjc3YWRkMDAzN2E5MDcwY2NhM2MxNjExNjlhIiwidGFnIjoiIn0%3D; expires=Thu, 09-Feb-2023 09:22:46 GMT; Max-Age=67200; path=/; samesite=lax
goosu_session=eyJpdiI6IjNiVzZ4UkJOTnBLWkh5RzNGcEpaa3c9PSIsInZhbHVlIjoiRkxxY3MwT3hXZ2Zya0xhOE1JNUpLakppdituQ0oyejVwYlluRlllTTF6Z2ZNQ1RudHdMZjR0QmxGRjBxSDRzV2Z2VWtBdnExamZHalllNk5QRnFXQlhRc3Bpdk1sQTVpclYreVlidFJ0UHU1SVNhRVc5SGs4Q0dSdUJ0T01MNFkiLCJtYWMiOiIyYmUxYTc0YjYzZTc3MzFiYzMyOGQwZjc1NWEwZDY3OWYxNDNiMTQyMWZkM2FiZDM1NGYyOTY2MTk4Mzc3MTM4IiwidGFnIjoiIn0%3D; expires=Thu, 09-Feb-2023 09:22:46 GMT; Max-Age=67200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7DE2uAfZ7byuPPfZrv9NtUhQltWr2c5euKSqGZMLTcV3LhQPO2sH5QY8DU4zMmKqdIBs44bEOF0n2RUyiLmQ8PG2XC5iUs9%2BGkw9c5ChtB87mQE5qCU1%2BZ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7965223e3876b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goo.su
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:02:00 GMT
expires: Mon, 05 Feb 2024 22:02:00 GMT
cache-control: public, max-age=31536000
age: 232846
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 14:14:52 GMT
age: 1674
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 27d7b7277c1bdead018082e2c7132162
666c9a45f25a54981760a573bfc36e7ddba8ce26
b1467a7ad0f595d999f6d50106b79a3cb315bc9dec9727e737fa663f049b2fa0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4329
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Last-Modified: Wed, 08 Feb 2023 13:30:37 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Open%20Sans:400&display=swap
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans:400&display=swap
IP
Hash c45ef4150f7646afb23e56cc19824bfd
deb8e59fa1cffc334ee4827f323cd17918239291
bba7b7db33537cb0bb79683cb3b337c9bf77b790f69676dbc15fe195aec585e5
GET /css?family=Open%20Sans:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 14:42:46 GMT
date: Wed, 08 Feb 2023 14:42:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 3b9446cb4786f1332566038b4f1c6947
7f3ce123ad30ddef0b7e5fa65928c1489565311e
a357e6d4d38d8e2049ebbd87cd9b2f5b6d70f80a421779b8104590363a6c11de
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:57:12 GMT
ETag: "7f3ce123ad30ddef0b7e5fa65928c1489565311e"
Last-Modified: Wed, 08 Feb 2023 12:57:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1321
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652242a834b50f-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 2798cc2a037abf9e262173150c60dc57
42ecf519b84cc7c68950e4d62f24bac514a60e4b
f3757bd984ae087004af751f723ea3358dad43ee8a521fb32a5954248818c522
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:34:35 GMT
ETag: "42ecf519b84cc7c68950e4d62f24bac514a60e4b"
Last-Modified: Wed, 08 Feb 2023 12:34:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2281
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652242b9211c06-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 2798cc2a037abf9e262173150c60dc57
42ecf519b84cc7c68950e4d62f24bac514a60e4b
f3757bd984ae087004af751f723ea3358dad43ee8a521fb32a5954248818c522
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:34:35 GMT
ETag: "42ecf519b84cc7c68950e4d62f24bac514a60e4b"
Last-Modified: Wed, 08 Feb 2023 12:34:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2281
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652242a980b52d-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 2798cc2a037abf9e262173150c60dc57
42ecf519b84cc7c68950e4d62f24bac514a60e4b
f3757bd984ae087004af751f723ea3358dad43ee8a521fb32a5954248818c522
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:34:35 GMT
ETag: "42ecf519b84cc7c68950e4d62f24bac514a60e4b"
Last-Modified: Wed, 08 Feb 2023 12:34:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2281
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652242c92e1c06-OSL
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4358137683029217
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4358137683029217
IP
File type ASCII text, with very long lines (3649)
Hash e609a576edbb84cc4444d925b738cb76
4bd98f18c7a7a04fe456836e66990a35778f22a4
c817be957ec19ceccdc13d752d71e90b7e5ef75c10000fa1a6724c08b27bffd5
GET /pagead/js/adsbygoogle.js?client=ca-pub-4358137683029217 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 08 Feb 2023 14:42:46 GMT
expires: Wed, 08 Feb 2023 14:42:46 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14652660676115714391
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49651
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 7bd02b06a29a1e31b0d1fb862520487e
1916bb2ee2e58e1d1d7d97e11d4e79eb82944b5b
c51ffd152e4bd4ec21e629dca677a992c50ecfbb9f1c533c544ce180139d8b65
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:56:31 GMT
ETag: "1916bb2ee2e58e1d1d7d97e11d4e79eb82944b5b"
Last-Modified: Wed, 08 Feb 2023 12:56:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 514
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652242d9b2b52d-OSL
counter.yadro.ru/hit?t44.11;r;s1280*1024*24;uhttps%3A//goo.su/y6ivgs;hRedirecting...;0.5962262986829142
200 OK 132 B URL HTTP/1.1 counter.yadro.ru/hit?t44.11;r;s1280*1024*24;uhttps%3A//goo.su/y6ivgs;hRedirecting...;0.5962262986829142
IP
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 099e70b2712eaea2a982b474b20a0a80
e3ce99d03d1ae5dc89050a8287f7c390374dd2cb
e10cd8d343f9c37e3500c69d92f7ac7e78b6c7df29a2ace8cffe71bfa494e8c9
GET /hit?t44.11;r;s1280*1024*24;uhttps%3A//goo.su/y6ivgs;hRedirecting...;0.5962262986829142 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Expires: Mon, 07 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4780
Expires: Wed, 08 Feb 2023 16:02:26 GMT
Date: Wed, 08 Feb 2023 14:42:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 2ebe47b6c4d90d604043e0514ed6785d
af180c2950eaca864c4ccfaa2c3a792e9bf07d3f
7964535f3abe9cf1352a23d484b01ef34482ac4b09ef8f3483899410e758b275
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:17:24 GMT
ETag: "af180c2950eaca864c4ccfaa2c3a792e9bf07d3f"
Last-Modified: Wed, 08 Feb 2023 12:17:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3299
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7965224379c21c06-OSL
googleads.g.doubleclick.net/pagead/html/r20230206/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230206/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230206/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Wed, 08 Feb 2023 01:06:58 GMT
expires: Wed, 22 Feb 2023 01:06:58 GMT
cache-control: public, max-age=1209600
age: 48948
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
kraken.rambler.ru/userip
200 OK 12 B IP
ASN #24638 Rambler Internet Holding LLC
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /userip HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: application/octet-stream
content-length: 12
access-control-allow-origin: https://goo.su
x-srv: 2kraken-prod0002.ad.rambler.tech
set-cookie: ruid=1CIAAOa042OUcb5AAY493wB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAOa042OUcb5AAY493wB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331
302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331
set-cookie: FTID=1RMYgQ0tkIIF:1675867367:3128781:::; path=/; expires=Fri, 09-Feb-24 14:42:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 0f269f6db7ba30cec261f7437f746188
f84725d0dcba4f4f63e5b2641c726ee2bfc07309
0c286a32f300430c23f24ae44dbd3472c8f4c3a9b098c28ffbb261c96b8949c3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:03:56 GMT
ETag: "f84725d0dcba4f4f63e5b2641c726ee2bfc07309"
Last-Modified: Wed, 08 Feb 2023 12:03:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 597
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796522449aeb1c06-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 0f269f6db7ba30cec261f7437f746188
f84725d0dcba4f4f63e5b2641c726ee2bfc07309
0c286a32f300430c23f24ae44dbd3472c8f4c3a9b098c28ffbb261c96b8949c3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:03:56 GMT
ETag: "f84725d0dcba4f4f63e5b2641c726ee2bfc07309"
Last-Modified: Wed, 08 Feb 2023 12:03:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 597
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652244ab4ab52d-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 0f269f6db7ba30cec261f7437f746188
f84725d0dcba4f4f63e5b2641c726ee2bfc07309
0c286a32f300430c23f24ae44dbd3472c8f4c3a9b098c28ffbb261c96b8949c3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:03:56 GMT
ETag: "f84725d0dcba4f4f63e5b2641c726ee2bfc07309"
Last-Modified: Wed, 08 Feb 2023 12:03:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 597
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652244ad6bfab4-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 0f269f6db7ba30cec261f7437f746188
f84725d0dcba4f4f63e5b2641c726ee2bfc07309
0c286a32f300430c23f24ae44dbd3472c8f4c3a9b098c28ffbb261c96b8949c3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:03:56 GMT
ETag: "f84725d0dcba4f4f63e5b2641c726ee2bfc07309"
Last-Modified: Wed, 08 Feb 2023 12:03:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 597
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79652244bb081c06-OSL
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Thu, 08 Feb 2024 20:28:25 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: ba8de5eac6ffcc86
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400&display=swap
200 OK 524 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400&display=swap
IP
Hash 4af9f2286d8ba3e5fd06ffe38609e932
474eb1af9111fb21009249c72d24426a88d38a7a
0b9a088fa2e3aed0502ed360ceee51333661f00c1cd0db2e5f6e7e1615af1817
GET /css?family=Roboto:400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 14:42:46 GMT
date: Wed, 08 Feb 2023 14:42:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/718954/2e96844bde3642fb4544.js
200 OK 109 kB URL HTTP/2 yastatic.net/partner-code-bundles/718954/2e96844bde3642fb4544.js
IP
File type ASCII text, with very long lines (65497)
Size 109 kB (109240 bytes)
Hash 9f61d56ce794dd529daef5e3fdb52e38
123d298913296cae2dce053f6817a907074b0fb2
ee210f7e421a357a4073f06a8a0a68398e05b38ac6c1f3785e450d919c33dd8b
GET /partner-code-bundles/718954/2e96844bde3642fb4544.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 109240
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "9f61d56ce794dd529daef5e3fdb52e38"
expires: Fri, 07 Feb 2053 21:16:43 GMT
last-modified: Tue, 07 Feb 2023 15:31:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/718954/36caea299034b123bba5.js
200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/718954/36caea299034b123bba5.js
IP
File type ASCII text, with very long lines (65494)
Hash 733dd172cf86f7c3cbe7087116475df2
574f65181b1e9382e387c57c474bd1279255ff54
cc67e4d3b7dafaac708060da2c158838dd4722970679c4770cb9a20d10073b6c
GET /partner-code-bundles/718954/36caea299034b123bba5.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 23534
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "733dd172cf86f7c3cbe7087116475df2"
expires: Fri, 07 Feb 2053 21:16:43 GMT
last-modified: Tue, 07 Feb 2023 15:31:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/718954/1c0942547d39e10f5f56.js
200 OK 4.8 kB URL HTTP/2 yastatic.net/partner-code-bundles/718954/1c0942547d39e10f5f56.js
IP
File type ASCII text, with very long lines (14344)
Hash 19cece338cdd217d0771d4f8522ea336
b6540ab8ec95a3181cad73f4aad3d48af074eb68
a54e83fc3d78da047dd468556deffda639c6866c7b8ceee78eabe830f5e6e746
GET /partner-code-bundles/718954/1c0942547d39e10f5f56.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 4801
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "19cece338cdd217d0771d4f8522ea336"
expires: Fri, 07 Feb 2053 21:16:43 GMT
last-modified: Tue, 07 Feb 2023 15:31:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/718954/07cea2bf8567304efc16.js
200 OK 7.9 kB URL HTTP/2 yastatic.net/partner-code-bundles/718954/07cea2bf8567304efc16.js
IP
File type ASCII text, with very long lines (23593)
Hash 7f2cadff7389788cd781bce9174300ce
8d1d1e6918fc049d1093b9687fa210121ea7e5fb
8d9790f9dd8a6386b005c8952783aff9b9e60a32548fcef91e98526a70c39922
GET /partner-code-bundles/718954/07cea2bf8567304efc16.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 7925
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "7f2cadff7389788cd781bce9174300ce"
expires: Fri, 07 Feb 2053 21:16:43 GMT
last-modified: Tue, 07 Feb 2023 15:31:43 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
st.top100.ru/top100/top100.js
200 OK 42 kB URL HTTP/2 st.top100.ru/top100/top100.js
IP
ASN #24638 Rambler Internet Holding LLC
Hash 90204269d14bab03636200741bc0b21d
e2ed9c788410a1a7c052c7bc2abafb7404c6135e
1b1c145b8cd9c76b4317b96e4a0aec7d36478c69bae5473026d48f96b0bce528
GET /top100/top100.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 14:29:34 GMT
x-rgw-object-type: Normal
etag: W/"6c26fdf5ff0049c6c1ca92f1aa77c18b"
x-amz-request-id: tx000000000000222c6473d-0063e3b4da-f85be6-default
expires: Wed, 08 Feb 2023 15:42:46 GMT
cache-control: max-age=3600
set-cookie: proto_uid=1CIAAOa042P6isOnASVo1AB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=goo.su
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=goo.su
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=goo.su HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 08 Feb 2023 14:42:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=goo.su
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=goo.su
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=goo.su HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 08 Feb 2023 14:42:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
top-fwz1.mail.ru/counter2?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331
200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675867421813%3A1675867421832%3A1%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.695809671832331 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://goo.su/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675867367:3128781:::; path=/; expires=Fri, 09-Feb-24 14:42:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5d1925325e512c8be92578a182ae6f82
154f013b79c99a816c0ad8034ee6501abdc7b4bb
8651879751a40a558cf5245fb94971490ffa3575955f4c867d6b4e240651dea2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=goo.su&callback=_gfp_s_&client=ca-pub-4358137683029217
200 OK 249 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=goo.su&callback=_gfp_s_&client=ca-pub-4358137683029217
IP
File type ASCII text, with very long lines (379), with no line terminators
Hash e47f34dd027cf276a61a9ae0e9d6d232
a0d8670b9777fde79a93571dc7467f544e7844be
31cbf2891623bfa4b336aa995d2f39d2e7713c2e2314dca1b11ad149a3b0bf18
GET /gampad/cookie.js?domain=goo.su&callback=_gfp_s_&client=ca-pub-4358137683029217 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 08 Feb 2023 14:42:47 GMT
server: cafe
cache-control: private
content-length: 249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7980999daf055fc9e21ce2d8663483ab
3e584c1676ed7789a50dc5c9391653a0b96a9bab
44143d9428bae54918244e95d8f31dfea0865929c0a0805c0f328a2a7eb78fe6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kraken.rambler.ru/cnt/?et=pv&v=3.13.8&pid=6673155&tid=t1.6673155.592694728.1675867421619&rid=1675867421.618-1579188101&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=543874219549539&aduid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&aduidsc=goo.su&stid=839308673_1675867421621&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=Redirecting...&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=2&ct=web&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=44652662
200 OK 595 B URL HTTP/2 kraken.rambler.ru/cnt/?et=pv&v=3.13.8&pid=6673155&tid=t1.6673155.592694728.1675867421619&rid=1675867421.618-1579188101&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=543874219549539&aduid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&aduidsc=goo.su&stid=839308673_1675867421621&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=Redirecting...&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=2&ct=web&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=44652662
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash b566a466c8d8c0361839677785e69240
c6e6a583e76e699806f806dbd63cebd9037f551e
86d9d7d32ba3d9eb9fbea6508c725c17c44f80d6a7d16ca1fa79a85c4b632e91
GET /cnt/?et=pv&v=3.13.8&pid=6673155&tid=t1.6673155.592694728.1675867421619&rid=1675867421.618-1579188101&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=543874219549539&aduid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&aduidsc=goo.su&stid=839308673_1675867421621&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=Redirecting...&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=2&ct=web&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=44652662 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/gif
content-length: 595
last-modified: Tue, 12 Nov 2019 12:50:59 GMT
etag: "5dcaaab3-253"
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 2kraken-prod0002.ad.rambler.tech
set-cookie: ruid=1CIAAOe042OYcV9BATMp3gB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAOe042OYcV9BATMp3gB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
accept-ranges: bytes
X-Firefox-Spdy: h2
kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=6673155&session_id=839308673_1675867421621&session_number=1&session_event_number=1&version=3.13.8&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.6673155.592694728.1675867421619&adtech_uid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&adtech_uid_scope=goo.su&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&request_id=1675867421.618-1579188101&event_id=811274219547877&meta=%7B%22title%22%3A%22Redirecting...%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=1725544525
200 OK 595 B URL HTTP/2 kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=6673155&session_id=839308673_1675867421621&session_number=1&session_event_number=1&version=3.13.8&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.6673155.592694728.1675867421619&adtech_uid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&adtech_uid_scope=goo.su&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&request_id=1675867421.618-1579188101&event_id=811274219547877&meta=%7B%22title%22%3A%22Redirecting...%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=1725544525
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash b566a466c8d8c0361839677785e69240
c6e6a583e76e699806f806dbd63cebd9037f551e
86d9d7d32ba3d9eb9fbea6508c725c17c44f80d6a7d16ca1fa79a85c4b632e91
GET /cnt/v2/?event_type=base&event_name=page_view&project_id=6673155&session_id=839308673_1675867421621&session_number=1&session_event_number=1&version=3.13.8&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.6673155.592694728.1675867421619&adtech_uid=af17c1a1-c15c-457b-bfbb-1663c99b21c1&adtech_uid_scope=goo.su&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fgoo.su%2Fy6ivgs&request_id=1675867421.618-1579188101&event_id=811274219547877&meta=%7B%22title%22%3A%22Redirecting...%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=1725544525 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/gif
content-length: 595
last-modified: Tue, 12 Nov 2019 12:50:59 GMT
etag: "5dcaaab3-253"
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 2kraken-prod0002.ad.rambler.tech
set-cookie: ruid=1CIAAOe042OYcV9BATYp3gB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAOe042OYcV9BATYp3gB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
accept-ranges: bytes
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230206&st=env
200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230206&st=env
IP
File type JSON data\012- , ASCII text, with very long lines (14854), with no line terminators
Hash 4a4c1d597a7789effa7e0ec7d5eeced0
dd130d42dd9cb1b6d9cbc181a48fa375e55a2d14
9ac8b6f19befaad582b9052f6e6fec7df952b838edc15fcd7e834d147406e1bb
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230206&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 08 Feb 2023 14:42:47 GMT
server: cafe
content-length: 11210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675867420622/////-6/49/55/56/261/59/261/457/458/473/697/716/719/1621/1621/;ni=;lvid=1675867421813%3A1675867422245%3A2%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.09764816707345148;e=RT/load;et=1675867422245
200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675867420622/////-6/49/55/56/261/59/261/457/458/473/697/716/719/1621/1621/;ni=;lvid=1675867421813%3A1675867422245%3A2%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.09764816707345148;e=RT/load;et=1675867422245
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675867420622/////-6/49/55/56/261/59/261/457/458/473/697/716/719/1621/1621/;ni=;lvid=1675867421813%3A1675867422245%3A2%3A44f4239b53f92e19b383da2f97b93ea4;visible=true;_=0.09764816707345148;e=RT/load;et=1675867422245 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675867367:3128781:::; path=/; expires=Fri, 09-Feb-24 14:42:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 080db7257d0f7a743cb7a4fe4feb98c3
2a9ad662d542644edb3a419afef47919ee972c2c
ce6a934b34b879a5a817e316b4e71c3fea6a08ea252f2b971a8aad87dc2a1778
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 08 Feb 2023 14:42:47 GMT
expires: Wed, 08 Feb 2023 14:42:47 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 08:42:42 GMT
expires: Fri, 02 Feb 2024 08:42:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 540005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 9850630f6382b30e3b48c8a7a1a4a270
025f25db554e8a01d341f142d4482a8acebc4f0d
158b0828027db1936694b8a4647403472b856a5b79a70e597ae858bffc469d58
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 08 Feb 2023 14:42:47 GMT
date: Wed, 08 Feb 2023 14:42:47 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-8njRQZmHpwQsZcoBqkatjg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
200 OK 6.3 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23297)
Hash eb77de48712912aadc9aa8171ac75ede
f375e4ed6b585c4e30b2d56f4f41c3beed909349
437ee0c22002ccd77158d7a7018113f26384324158ab3cef65373007f29b1bcf
GET /safeframe-bundles/0.83/1-1-0/render.html HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: text/html
content-length: 6262
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Fri, 07 Feb 2053 21:15:25 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 6c85a6c1859f25f4d9d70a40d7a97aaf
7d26f9ed1e388c013f2564a54d54ec19feafe456
bbcd36d472e82adbe852cb9177446e48fcc08ab122e5f8aea989c494fa3cbda9
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 13:26:42 GMT
ETag: "7d26f9ed1e388c013f2564a54d54ec19feafe456"
Last-Modified: Wed, 08 Feb 2023 13:26:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1397
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796522483dfa1c06-OSL
an.yandex.ru/event_confirmation
200 OK 1.5 kB URL HTTP/2 an.yandex.ru/event_confirmation
IP
Hash 5ccb50bf58a12a11787e8e663056b091
d666f8b4d2393d593e5296bf10b1cadd93ecd0c2
69c4fbb5e5aa3e8604230fea7f92313c369c40f2a849f716abd59516f250a10d
OPTIONS /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://goo.su/
Origin: https://goo.su
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
date: Wed, 08 Feb 2023 14:42:47 GMT
access-control-max-age: 1728000
access-control-allow-headers: content-type
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=1&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=98089214&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A129%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B5344502650592%5D
200 OK 39 kB URL HTTP/2 an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=1&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=98089214&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A129%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B5344502650592%5D
IP
Hash c9ee6e819dba4a2cdeb132a1f141172c
67e34b056b3ed5660bbfa94136c665769765c280
9f8821a60f3d757f6d0fad19de0e511631408a65ff920616fe830598ad7c6c56
GET /meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=1&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=98089214&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A129%2C%22ad_no%22%3A0%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B5344502650592%5D HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
access-control-allow-origin: https://goo.su
x-xss-protection: 1; mode=block
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-yandex-req-id: 1675867367355616-1820304022462065219100107-production-app-host-vla-pcode-112
last-modified: Wed, 08 Feb 2023 14:42:47 GMT
date: Wed, 08 Feb 2023 14:42:47 GMT
set-cookie: yabs-vdrf=A0; domain=an.yandex.ru; path=/; expires=Wed, 15-Feb-2023 14:42:47 GMT
i=pHNH83jkHXeMObuzGV9aYemW4R3wGRWFiEBcUstC7gd2+bPIj/mDVEBVYRt8HgU5HfwQpWT+2YyTgeFDH9+Dr3ysLSU=; Expires=Fri, 07-Feb-2025 14:42:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
ssr: true
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 14:42:47 GMT
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 3beca8100ca0c0188eaa00904b63cb18
d60519b200c5d2519835e92ac752820fe2ca9567
ddb4205ec6d87bab35ae490e9f43f6987ce75828ee4999986a0e4f9e85025bf4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 12 Feb 2023 12:14:02 GMT
ETag: "d60519b200c5d2519835e92ac752820fe2ca9567"
Last-Modified: Wed, 08 Feb 2023 12:14:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2397
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796522488e301c06-OSL
avatars.mds.yandex.net/get-direct/4119891/WpgF4CJ8dAhSNZ6zSGc1ng/x90
200 OK 3.2 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/4119891/WpgF4CJ8dAhSNZ6zSGc1ng/x90
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4768943aba0376864175b889adc4beb7
386a44591883f3b00612b9934f1ba0591151d050
ed130b12a7e08195164cd81c9c8107608e20f0de5e3a05949949b16bcb3f7c01
GET /get-direct/4119891/WpgF4CJ8dAhSNZ6zSGc1ng/x90 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/webp
content-length: 3234
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Thu, 01 Dec 2022 12:00:34 GMT
cache-control: max-age=31536000,immutable
x-request-id: c726411641bdfde3
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/4079742/dewDZifoFtrwJhEHG8Lu4w/y90
200 OK 3.7 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/4079742/dewDZifoFtrwJhEHG8Lu4w/y90
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eb85ea2a3953404396744465ed42bcb0
264bd7b0360ed6ef71a7f6d2491c610575c3f055
6ae9c1225e60492163356c00a6539a72ce02339043b130eef6286e574cb82a7d
GET /get-direct/4079742/dewDZifoFtrwJhEHG8Lu4w/y90 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/webp
content-length: 3680
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Sat, 04 Feb 2023 21:36:01 GMT
cache-control: max-age=31536000,immutable
x-request-id: 609dc4a56c796325
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/4880117/cLuhUvS83hW2gD3PIEC1MA/x90
200 OK 3.1 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/4880117/cLuhUvS83hW2gD3PIEC1MA/x90
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 90x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e9e320a4f71d3edde185c6dc1ea3175b
a6bd162a13e5024738f8b449c64456d9ec1e2985
ffd8ba68d27d413a69687e28fc080f016ec7104f9459c4a66ed7f54e6d21e626
GET /get-direct/4880117/cLuhUvS83hW2gD3PIEC1MA/x90 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/webp
content-length: 3056
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Mon, 05 Dec 2022 23:33:04 GMT
cache-control: max-age=31536000,immutable
x-request-id: 395a9b2354b275d5
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Wed, 08 Feb 2023 14:42:47 GMT
access-control-allow-origin: *
etag: "63e36f34-e31c"
expires: Wed, 08 Feb 2023 15:42:47 GMT
last-modified: Wed, 08 Feb 2023 12:45:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5234214/5D8RkzgjJq0K4Zd-8qpugw/x300
200 OK 14 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/5234214/5D8RkzgjJq0K4Zd-8qpugw/x300
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x225, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cff8e3eccc3e833430060e8808b7478d
2eb3dc6c44248d06fac6b0566f5e769ae28a5138
31b71a0278719060466d0cce35d872eb4f09977db27409e4bb0d2a91b100e804
GET /get-direct/5234214/5D8RkzgjJq0K4Zd-8qpugw/x300 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:47 GMT
content-type: image/webp
content-length: 13830
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Wed, 12 Oct 2022 13:27:08 GMT
cache-control: max-age=31536000,immutable
x-request-id: b8c37a4966f5ab86
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
an.yandex.ru/event_confirmation
200 OK 959 B URL HTTP/2 an.yandex.ru/event_confirmation
IP
Hash ca840b3d040252bcac110f98b25db84e
80aff54aa058df3607b372174b74c6519712c901
d47708f45c024f152c91ccd6da0567a01450477be4a1037fd370b06fb0d56865
POST /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 296
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:47 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
200 Ok 95 B URL HTTP/1.1 ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 60cf42b4d05caf10cf8bb15c0817a7b4
bd269860bb508aebcb6f08fe7289d5f117830383
18c327afa903633f86c3efcf12b77f098077eacaa8be101bb007846fd74f8b93
GET /static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes HTTP/1.1
Host: ysa-static.passport.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Server: nginx/1.14.2
Date: Wed, 08 Feb 2023 14:42:47 GMT
Content-Type: image/png
Content-Length: 95
Connection: close
Cache-Control: private
Expires: Thu, 09 Feb 2023 14:42:47 GMT
X-RT-IQ: 0.0001
X-RT-IH: 0.0002
Strict-Transport-Security: max-age=315360000; includeSubDomains
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 46c741bc594f28cd885e98c840e17600
3826ba3bb5f29f8e52365d91fa1e2840d8c7265e
ee64197d5de8cf036441031e007643ba7e7c677e3edb9034fdb07d67fa7317ae
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:48 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 12 Feb 2023 13:05:12 GMT
ETag: "3826ba3bb5f29f8e52365d91fa1e2840d8c7265e"
Last-Modified: Wed, 08 Feb 2023 13:05:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1377
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7965224a0fb71c06-OSL
favicon.yandex.net/favicon/coddyschool.com?size=120&stub=2
200 Ok 4.2 kB URL HTTP/1.1 favicon.yandex.net/favicon/coddyschool.com?size=120&stub=2
IP
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash fc83f1fc2d4deb8597e9c954b53b5277
324ad167a2630c3ff97c3e71702c38d923a4539f
4b307d56f3dc06c64c62aeff0e608d98c85a6367b20c33d292a0ec32791521cf
GET /favicon/coddyschool.com?size=120&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
access-control-allow-origin: *
mc.yandex.ru/watch/1677322/1?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29ti%282%29
200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/1677322/1?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash cc184b59aad1990799a0915f1eb604fc
fa307a59b67c2a4aa4a283f3d9751b9283d1c0bc
e074f03b7af81c475a67ff67dc041dd6dbadcb922e0f3b1e5142aed80ae1fa20
GET /watch/1677322/1?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Referer: https://goo.su/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Wed, 08 Feb 2023 14:42:48 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:48 GMT
last-modified: Wed, 08-Feb-2023 14:42:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5146930/-wjtN_668PDwXSqU0Fh50g/y150
200 OK 6.1 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/5146930/-wjtN_668PDwXSqU0Fh50g/y150
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 14c12df6cbc4187a0bb4b3b309a1c7b6
58bd221b503fa2ae0fec6cf612045a891a1cc75d
8c1b30232d4683d16e8984db30a43c3718ee1855e29d3be7f3bb66b6b405b8e6
GET /get-direct/5146930/-wjtN_668PDwXSqU0Fh50g/y150 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:48 GMT
content-type: image/webp
content-length: 6114
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Thu, 24 Nov 2022 12:02:51 GMT
cache-control: max-age=31536000,immutable
x-request-id: b2a68eb13628decd
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/225309/A7Kz2n-cdWez81mj8tDxOg/wy150
200 OK 5.0 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/225309/A7Kz2n-cdWez81mj8tDxOg/wy150
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 267x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d6c25e25f711ee5dd8ea12e345a176dc
63e8ee396173b14bcf19816567dfc3149280fc32
0a68fa3877c10a6098635ed295b34819ca1aa45006ae4d9804b0884a7975eddb
GET /get-direct/225309/A7Kz2n-cdWez81mj8tDxOg/wy150 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:48 GMT
content-type: image/webp
content-length: 5026
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Fri, 11 Jan 2019 09:30:35 GMT
cache-control: max-age=31536000,immutable
x-request-id: c8eb5920836b3d18
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
avatars.mds.yandex.net/get-direct/5217654/Zl9FhTcf9cFHjHHkufz3OA/y150
200 OK 7.9 kB URL HTTP/2 avatars.mds.yandex.net/get-direct/5217654/Zl9FhTcf9cFHjHHkufz3OA/y150
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f47041d07195599ce6e59e20d696299
b4a44274b03dd8b96b559eed313c5fe1101b5c5e
81ac0b127a7a51b6bea890c4af636a4b4c018b8e0ae59b9b827dbef556963377
GET /get-direct/5217654/Zl9FhTcf9cFHjHHkufz3OA/y150 HTTP/1.1
Host: avatars.mds.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:48 GMT
content-type: image/webp
content-length: 7944
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Tue, 31 Jan 2023 06:24:25 GMT
cache-control: max-age=31536000,immutable
x-request-id: 6ab7b1601336e456
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
X-Firefox-Spdy: h2
an.yandex.ru/event_confirmation
200 OK 20 kB URL HTTP/2 an.yandex.ru/event_confirmation
IP
Hash 70e8cf4ab33c3495e7627ba73669809e
17c1cd52996d4a1f8755ebbead9aba8e12f18dea
7fccfea9893facfa03de4f91b80f5ed06e536732bb2bc9b7019834cf67060723
POST /event_confirmation HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 321
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6053
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:42:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6053
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:42:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6053
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:42:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6053
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:42:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NwaKQCUYm5ov0l7aSUXurRhRMvaAOsjf5QOIWCttb8xkUbgrQei-Yw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:18 GMT
age: 60630
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 07:53:36 GMT
age: 24552
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 60620
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbe359ce6fb136add75c8f3d3cc06330
e6584afcf39b6fad21eccbcce95c6645b8e1b3b8
29478bf1b8168dc457bb7d298448a78e1040bd3aa80cbf11cfa37475568590d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: d1ddb47f-3472-4015-8d55-72f435671f03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSPHiroAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070da-114975440d70915472cdba2f;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0w6JgtsKSRHLPJ3LyY6YUI8N7PS-gVlLuivQUq9jdyeYYm3STiJJIQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:34:33 GMT
age: 36495
etag: "e6584afcf39b6fad21eccbcce95c6645b8e1b3b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
favicon.yandex.net/favicon/ridero.eu?size=120&stub=2
200 Ok 1.2 kB URL HTTP/1.1 favicon.yandex.net/favicon/ridero.eu?size=120&stub=2
IP
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c3ed7f27c7de97d2a5b69043287d63b
c17026ca26200fab36e37ee2eae6e8318d122c4d
ff973a73cc160c479111b4e5c82195c85c73cc4ff6c747a5bc76638e04a3c9fb
GET /favicon/ridero.eu?size=120&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
access-control-allow-origin: *
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 60719
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f175de8eebe398f5de2829cd551b3f04
e6da63e9b03289bfded190d999a20da78232437c
b5d1ee4bd6186cbac1e4ac037766c9e453e166b0cfb2e08004cb11b8bb7daa88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10202
x-amzn-requestid: 15e6c7ee-acef-4638-9a15-a01864ac74f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PEYFZOoAMFzEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c54f-3681217a71e5b9472b9cdb8a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PyOVGtKFSYIU2don5C7_L_pTUxdP_VEAhLZUhtBWo2PZ4kvPqaTg9g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:22 GMT
etag: "e6da63e9b03289bfded190d999a20da78232437c"
content-type: image/jpeg
age: 60446
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
favicon.yandex.net/favicon/lands.today?size=120&stub=2
200 Ok 16 kB URL HTTP/1.1 favicon.yandex.net/favicon/lands.today?size=120&stub=2
IP
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 63548bf900eefbda0c9664f086b58168
86bee04dd1af9ea2162ab9ffff5a4ea4b6f0e457
ee3fd02c702f3faebfaabefd7387b06e4834c7b341a49fa11209ba9ac26ff427
GET /favicon/lands.today?size=120&stub=2 HTTP/1.1
Host: favicon.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Cache-Control: max-age=691200
Content-Type: image/png
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
access-control-allow-origin: *
mc.yandex.ru/watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A701%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A469140617%3Arqn%3A1%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A6%2C206%2C197%2C0%2C-5%2C0%2C%2C239%2C2%2C1622%2C1622%2C2%2C717%3Aco%3A0%3Ans%3A1675867420622%3Ast%3A1675867423&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(1)aw(1)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A701%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A469140617%3Arqn%3A1%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A6%2C206%2C197%2C0%2C-5%2C0%2C%2C239%2C2%2C1622%2C1622%2C2%2C717%3Aco%3A0%3Ans%3A1675867420622%3Ast%3A1675867423&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(1)aw(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A701%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A469140617%3Arqn%3A1%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A6%2C206%2C197%2C0%2C-5%2C0%2C%2C239%2C2%2C1622%2C1622%2C2%2C717%3Aco%3A0%3Ans%3A1675867420622%3Ast%3A1675867423&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(1)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:48 GMT
last-modified: Wed, 08-Feb-2023 14:42:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29fip%281%29ti%282%29
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29fip%281%29ti%282%29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Referer: https://goo.su/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:48 GMT
last-modified: Wed, 08-Feb-2023 14:42:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash eb576944d41ef0aa7311f56f5986923a
b9238b883961c0eca9b9c38cfa397829da6fd670
b22949087d7b093f94e309f7162f4b03275f36e095a4f90b02d7d85c4e3321fc
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:42:48 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 12 Feb 2023 11:18:16 GMT
ETag: "b9238b883961c0eca9b9c38cfa397829da6fd670"
Last-Modified: Wed, 08 Feb 2023 11:18:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3472
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7965224cfbe0b52d-OSL
yandex.ru/ads/trace
200 Ok 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ads/trace HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 142
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Access-Control-Allow-Origin: *
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Set-Cookie: i=0dI1p1c+TPJ0t/A74m9wt2+dEOJO/WyowXRg8Vz9xbaz+OyuB85/JwpZWLUYgyj3k8Tm4OEU6nqTSim83g9C5GGA7dE=; Expires=Fri, 07-Feb-2025 14:42:48 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=7475377671675867368; Path=/; Domain=.yandex.ru; Expires=Thu, 08 Feb 2024 14:42:48 GMT; SameSite=None; Secure; HttpOnly
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675867368512078-16184635120430761974-balancer-l7leveler-kubr-yp-vla-12-BAL-1771
mc.yandex.ru/watch/1677322?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(2)aw(1)fip(1)ti(2)
302 Found 58 kB URL HTTP/2 mc.yandex.ru/watch/1677322?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(2)aw(1)fip(1)ti(2)
IP
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /watch/1677322?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)mc(p-1-h-1)clc(0-0-0)rqnt(2)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/1677322/1?page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&cnt-class=1&hittoken=1675867368_e504fb14a0bddc24b73c2e41befcf03d1fb1a50d81fbf755f29f73d63d0cc9e8&browser-info=pv%3A1%3Aar%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144343%3Aet%3A1675867423%3Ac%3A1%3Arn%3A298134205%3Arqn%3A2%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29mc%28p-1-h-1%29clc%280-0-0%29rqnt%282%29aw%281%29fip%281%29ti%282%29
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
set-cookie: yabs-sid=320335541675867368; Path=/; SameSite=None; Secure
i=DbqhdPNfvroiwqqM7GLu6V/DAygIkFbBdqsD3WEOMNFKDX4f3HXH6rQSf0E6OQNSGv9CvB8VVYHgZOoy2ep3RuL74wY=; Expires=Sat, 05-Feb-2033 14:42:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4706402331675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=4706402331675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707403368.yc.1675867368#1707403368.yrts.1675867368#1707403368.yrtsi.1675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:48 GMT
last-modified: Wed, 08-Feb-2023 14:42:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cf49eabf6c39227090fe9c84259813a3
af588e3b99547bf1b73111ad7021194470040614
5fbee01dfdae355f394e11104227264533acc86778df34f37715d37c601a9721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b2df7f877c9ce47659c7183a227b312b
73fac7c699de0aeed8cd280d37b1e96884378405
869f8fad7b9cd17aea2f5c9679bc60eb6eb3cf82d8c601bbe4620e874ae5c5d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cf49eabf6c39227090fe9c84259813a3
af588e3b99547bf1b73111ad7021194470040614
5fbee01dfdae355f394e11104227264533acc86778df34f37715d37c601a9721
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b2df7f877c9ce47659c7183a227b312b
73fac7c699de0aeed8cd280d37b1e96884378405
869f8fad7b9cd17aea2f5c9679bc60eb6eb3cf82d8c601bbe4620e874ae5c5d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 14:42:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 08 Feb 2023 14:42:49 GMT
access-control-allow-origin: *
etag: "63e36f34-2b"
expires: Wed, 08 Feb 2023 15:42:49 GMT
accept-ranges: bytes
last-modified: Wed, 08 Feb 2023 12:45:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yastatic.net/q/set/s/rsya-tag-users/bundle.js
200 OK 52 kB URL HTTP/2 yastatic.net/q/set/s/rsya-tag-users/bundle.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash f7fbef4d184f697c43e8fafa76905b1d
39c6bc9b59bc4d2e41600ccba57061d41242052d
35dcaf0ffac1620dc0418c4f66ae26cd51b8fece301e5087e6a62e402ca3e17d
GET /q/set/s/rsya-tag-users/bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 08 Feb 2023 14:42:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"82bdc8db563d3e71c35534315f8a9fd5"
expires: Sat, 11 Feb 2023 02:39:20 GMT
last-modified: Fri, 29 Oct 2021 11:19:01 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: e4ea66975f730de0
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=6bTjY8bQOPmi7AOcya_wCw&random=1937259092&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0
302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=6bTjY63pOMqYiM0Pm5Ky4AM&random=1295812416&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ef3ab9db2ac0a4857513e3fb85577020
dd1e04bdb7a67a128c4fee17c01a09892fb9f1e1
22e5078d1cdb6862d47bfc66e957ff3008c5127dbf9c76652dd45fe4e0d36bd3
GET /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Wed, 08 Feb 2023 14:42:49 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://yastatic.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:49 GMT
last-modified: Wed, 08-Feb-2023 14:42:49 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.com/pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.com/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107
302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.com/pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024
302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.com/pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
www.google.no/pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1675867424719&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=607258077&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1675867424723&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465926&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=3341056622&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=uXlUCLqxpmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1295812416&crd=&is_vtc=1&random=3929230107&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1014923426/?label=eA9lCJXGrmMQooH64wM&value=0&script=0&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1937259092&crd=&is_vtc=1&random=1222928024&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yastatic.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/693627671/?random=1675867424728&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1911353747&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/947884341/?random=1675867424727&cv=9&fst=1675864800000&num=1&guid=ON&eid=466465925&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&data=extensions%3D%3BfromGoogle%3Dfalse%3BfromCancel%3Dfalse%3Bloyal%3D0%3Bsbscrb%3D%3Bp%3D%3Bb%3D%3Bfresh%3D%3Binfected%3D%3Bslow%3D%3Bos%3Dwindows%3Bbrowser%3Dfirefox%3Bwinxp%3Dfalse%3Bold%3Dactual&frm=2&url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&ref=https%3A%2F%2Fgoo.su%2F&async=1&fmt=3&is_vtc=1&random=1408835987&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 14:42:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1R3BGmYN0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8qZJLJ1vbv51Xe7XB-CieFXS9f38MgOe87cMwJyGl68I-FpaajhCLmmCh4-KtGs_i3ByPM81MSxC2YHxcHM1v5HcaBQvp6mW2vcP61H0zh5iP5wwnpLvEuzTx4dcvoRsJcV_ETTS1Qky2oP_CZiuyKESotBgrHamQmNB8V4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFidBDu09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sUhD0lpAhV4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my09rifOm0?confirmTime=2102000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=8&rnd=1362025210211&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzEyNzE0NDM2MSI6IjEyNjh4MjAwIn0%3D&width=1268&height=200
200 OK 569 B URL HTTP/2 an.yandex.ru/rtbcount/1R3BGmYN0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8qZJLJ1vbv51Xe7XB-CieFXS9f38MgOe87cMwJyGl68I-FpaajhCLmmCh4-KtGs_i3ByPM81MSxC2YHxcHM1v5HcaBQvp6mW2vcP61H0zh5iP5wwnpLvEuzTx4dcvoRsJcV_ETTS1Qky2oP_CZiuyKESotBgrHamQmNB8V4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFidBDu09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sUhD0lpAhV4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my09rifOm0?confirmTime=2102000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=8&rnd=1362025210211&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzEyNzE0NDM2MSI6IjEyNjh4MjAwIn0%3D&width=1268&height=200
IP
Hash 18ff4224518991d945edcdf5903aae54
bc4dddb9f6f3d2eb407c5211f97da4fde5afd983
d181fdf273a1885b213a6aa959ba3f96f3342eca6018370c4d1a26f34fb63373
GET /rtbcount/1R3BGmYN0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8qZJLJ1vbv51Xe7XB-CieFXS9f38MgOe87cMwJyGl68I-FpaajhCLmmCh4-KtGs_i3ByPM81MSxC2YHxcHM1v5HcaBQvp6mW2vcP61H0zh5iP5wwnpLvEuzTx4dcvoRsJcV_ETTS1Qky2oP_CZiuyKESotBgrHamQmNB8V4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFidBDu09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sUhD0lpAhV4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my09rifOm0?confirmTime=2102000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=8&rnd=1362025210211&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzEyNzE0NDM2MSI6IjEyNjh4MjAwIn0%3D&width=1268&height=200 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:50 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:50 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675867421813%3A1675867429705%3A3%3A44f4239b53f92e19b383da2f97b93ea4;opts=jst-ym;visible=true;_=0.45435687572402483;e=RT/unload;et=1675867429703;pvt=8384;vtauto=7898
200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675867421813%3A1675867429705%3A3%3A44f4239b53f92e19b383da2f97b93ea4;opts=jst-ym;visible=true;_=0.45435687572402483;e=RT/unload;et=1675867429703;pvt=8384;vtauto=7898
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=3128781;u=https%3A//goo.su/y6ivgs;st=1675867421319;title=Redirecting...;s=1280*1024;vp=1268*939;touch=0;hds=1;frame=0;flash=;sid=8911f5308bf2ffa3;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675867421813%3A1675867429705%3A3%3A44f4239b53f92e19b383da2f97b93ea4;opts=jst-ym;visible=true;_=0.45435687572402483;e=RT/unload;et=1675867429703;pvt=8384;vtauto=7898 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:55 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675867375:3128781:::; path=/; expires=Fri, 09-Feb-24 14:42:55 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/js/code.js
200 OK 0 B URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675867366:0:::; path=/; expires=Fri, 09-Feb-24 14:42:46 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Wed, 08 Feb 2023 15:42:46 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/1677322?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)clc(0-0-0)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/1677322?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)clc(0-0-0)aw(1)fip(1)ti(2)
IP
GET /watch/1677322?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr(14)clc(0-0-0)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/1677322/1?wmode=7&page-url=https%3A%2F%2Fgoo.su%2Fy6ivgs&nohit=1&charset=utf-8&cnt-class=1&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A68088634277%3Ahid%3A749399588%3Az%3A0%3Ai%3A20230208144342%3Aet%3A1675867423%3Ac%3A1%3Arn%3A884712223%3Au%3A1675867423510687763%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675867420622%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675867423%3At%3ARedirecting...&t=gdpr%2814%29clc%280-0-0%29aw%281%29fip%281%29ti%282%29
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
set-cookie: yabs-sid=2467415911675867368; Path=/; SameSite=None; Secure
i=BviO4WHGnZpaZSpjLqpyh57ClvpOCB+ep5CWbKPCnKOdfIyfAn89YmJQiu/hkN1lsJQ5O3SJL/tRg6IkilohUPMMkHQ=; Expires=Sat, 05-Feb-2033 14:42:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5482686591675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5482686591675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707403368.yc.1675867368#1707403368.yrts.1675867368#1707403368.yrtsi.1675867368; Expires=Thu, 08-Feb-2024 14:42:48 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:48 GMT
last-modified: Wed, 08-Feb-2023 14:42:48 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc(0-0-0)rqnt(1)aw(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc(0-0-0)rqnt(1)aw(1)ti(2)
IP
GET /watch/3?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc(0-0-0)rqnt(1)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yastatic.net
Connection: keep-alive
Referer: https://yastatic.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/3/1?wmode=7&page-url=https%3A%2F%2Fyastatic.net%2Fsafeframe-bundles%2F0.83%2F1-1-0%2Frender.html&page-ref=https%3A%2F%2Fgoo.su%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A11541346481%3Ahid%3A871559728%3Az%3A0%3Ai%3A20230208144344%3Aet%3A1675867425%3Arn%3A579717310%3Arqn%3A1%3Au%3A1675867425521175663%3Aw%3A1x1%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ads%3A0%2C0%2C15%2C1%2C1%2C0%2C%2C39%2C0%2C428%2C428%2C0%2C58%3Aco%3A0%3Ans%3A1675867422467%3Ast%3A1675867425&t=clc%280-0-0%29rqnt%281%29aw%281%29ti%282%29
date: Wed, 08 Feb 2023 14:42:49 GMT
access-control-allow-origin: https://yastatic.net
set-cookie: yabs-sid=1093143311675867369; Path=/; SameSite=None; Secure
i=c33fSV400OAmAS1fq1Plyd3Eug5V1K09SkX2TWIAgATa2v8/7OUKoohyM1FLf9A6suoCTQcs84O5D7xBesitmk6LYv8=; Expires=Sat, 05-Feb-2033 14:42:46 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9784630001675867369; Expires=Thu, 08-Feb-2024 14:42:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9784630001675867369; Expires=Thu, 08-Feb-2024 14:42:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707403369.yc.1675867369#1707403369.yrts.1675867369#1707403369.yrtsi.1675867369; Expires=Thu, 08-Feb-2024 14:42:49 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08-Feb-2023 14:42:49 GMT
last-modified: Wed, 08-Feb-2023 14:42:49 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=37658627&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjM%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A327%2C%22ad_no%22%3A3%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B9770214415122%5D
200 OK 0 B URL HTTP/2 an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=37658627&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjM%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A327%2C%22ad_no%22%3A3%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B9770214415122%5D
IP
GET /meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=3&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=37658627&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjM%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A145%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A561%2C%22top%22%3A327%2C%22ad_no%22%3A3%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A1%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B9770214415122%5D HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
access-control-allow-origin: https://goo.su
x-xss-protection: 1; mode=block
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-yandex-req-id: 1675867367655022-18134792709976550100108-production-app-host-sas-pcode-197
last-modified: Wed, 08 Feb 2023 14:42:47 GMT
date: Wed, 08 Feb 2023 14:42:47 GMT
set-cookie: yabs-vdrf=A0; domain=an.yandex.ru; path=/; expires=Wed, 15-Feb-2023 14:42:47 GMT
i=xcr+0eUCR9RToFJqQokKQhNHaGIWEccc0e/Em0MKGWsl8L04786a2DZ+uV052vt+FSfB/N3HVTus4GbAejCIW8wm/Sk=; Expires=Fri, 07-Feb-2025 14:42:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
ssr: true
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 14:42:47 GMT
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1U6i9KcN0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsLa1efSPGHflSl88CF0y9Tn5b1yBXD8P2rJ590yo_GV25un2NopSLWzynNGEdjvTyClh0n_cLX0bZEp0ibUPaKWEPKPf6qkCnl8GcOc1WMGVImRcPVkSKtUpcCNUvBvUSwEBxbsyH9NmIhlWicVp0vE_13diinzTGRCMi7oNcq3otyOODo1n3w0nBx90l7K1_k7BCSQrFSRfLotVyi2yje2LjwJh3dlkC3I5rWR6XfORh8-knCLLd1SBUmhAqXt1ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLoDcgiAgWmYsnECty9HlCmfzmraJsxmaVy-njtzhFOcSpDxImD3NPmCwqWvtd1Blu0_RsMqqx9ttQi9Zx1piF0E7ifb40
200 OK 0 B URL HTTP/2 an.yandex.ru/rtbcount/1U6i9KcN0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsLa1efSPGHflSl88CF0y9Tn5b1yBXD8P2rJ590yo_GV25un2NopSLWzynNGEdjvTyClh0n_cLX0bZEp0ibUPaKWEPKPf6qkCnl8GcOc1WMGVImRcPVkSKtUpcCNUvBvUSwEBxbsyH9NmIhlWicVp0vE_13diinzTGRCMi7oNcq3otyOODo1n3w0nBx90l7K1_k7BCSQrFSRfLotVyi2yje2LjwJh3dlkC3I5rWR6XfORh8-knCLLd1SBUmhAqXt1ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLoDcgiAgWmYsnECty9HlCmfzmraJsxmaVy-njtzhFOcSpDxImD3NPmCwqWvtd1Blu0_RsMqqx9ttQi9Zx1piF0E7ifb40
IP
GET /rtbcount/1U6i9KcN0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsLa1efSPGHflSl88CF0y9Tn5b1yBXD8P2rJ590yo_GV25un2NopSLWzynNGEdjvTyClh0n_cLX0bZEp0ibUPaKWEPKPf6qkCnl8GcOc1WMGVImRcPVkSKtUpcCNUvBvUSwEBxbsyH9NmIhlWicVp0vE_13diinzTGRCMi7oNcq3otyOODo1n3w0nBx90l7K1_k7BCSQrFSRfLotVyi2yje2LjwJh3dlkC3I5rWR6XfORh8-knCLLd1SBUmhAqXt1ri3omosAuU35x1rxzcyeVNlcVrbAzbWnXnWypZ1nlo8ZJVLoDcgiAgWmYsnECty9HlCmfzmraJsxmaVy-njtzhFOcSpDxImD3NPmCwqWvtd1Blu0_RsMqqx9ttQi9Zx1piF0E7ifb40 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
st.top100.ru/top100/3.13.8/usability.js
200 OK 0 B URL HTTP/2 st.top100.ru/top100/3.13.8/usability.js
IP
ASN #24638 Rambler Internet Holding LLC
GET /top100/3.13.8/usability.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Wed, 08 Feb 2023 14:42:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 14:29:34 GMT
x-rgw-object-type: Normal
etag: W/"99710dbdb5ab5abc8052ba277efd0249"
x-amz-request-id: tx000000000000222c5ee31-0063e3b43c-f85be6-default
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
set-cookie: proto_uid=1CIAAOa042P6isOnAUBo1AB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=4&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=93586041&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjMKNzIwNTc2MDcxMjcxNDQzNjE%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1268%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A657%2C%22ad_no%22%3A4%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A2%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B6678130917848%5D
200 OK 0 B URL HTTP/2 an.yandex.ru/meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=4&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=93586041&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjMKNzIwNTc2MDcxMjcxNDQzNjE%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1268%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A657%2C%22ad_no%22%3A4%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A2%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B6678130917848%5D
IP
GET /meta/1677322?target-ref=https%3A%2F%2Fgoo.su%2Fy6ivgs&charset=utf-8&pcode-test-ids=657519%2C0%2C74%3B706837%2C0%2C56%3B718868%2C0%2C76%3B716645%2C0%2C26%3B719186%2C0%2C24%3B711504%2C0%2C35%3B717975%2C0%2C80%3B709010%2C0%2C51%3B718954%2C0%2C53%3B710343%2C0%2C0%3B681850%2C0%2C8&pcode-flags-map=eJytWNtu2zgQ%2FZWFnxdd3S99oyTKJiyJWpJy6hYF4aZu4kUui9TpZlv033coyrYku3STLVCkjuI5HM7lzBl9m5BpRRmWJeEcZzJDAskaMVRymVMmFyTDVJJKprRM6OT1u2%2BTL6ubx%2FXk9WT99Pfk98l2%2FXlLPsKvfmx5vj%2F5%2Fv73yQJxyfCfDeZCLkpUy5zRUqKMD%2BwFa3AfILBDJ7JaAFyhpMCjw%2BFDTioiMPiXzvmMCnlBxIw2QiLwXXCTd4HvB5H7bPBfgYyKQtaMZk0q%2BPExz4PGAPnMvPRAVF7gzAtIhSxQgosWCkASVFWYmbMTuK4X9n2p8IXkc7CGfwqQogwzWRdoOYIaOxT5ThzvHSJVjaZYckHS%2BVJmhCvwrI1aolKb5fQNPGY4FZLjohhA4zf1EDq0nQN0w4deVqiqG%2FMtYzu0vD2AmDGIFmZMhSmXvGELvISQQxKnknBZQZksUEGyM6BO4Ed7UJSp6C9V3XZIguo26XrGCBZaoReFB7CiAA9pVSxl3SQFSSWqSZtWSAkX0NlmNNu2fLvXtCVdYEkLsCVv8Z4IVPv%2BvIe2G3nWoeCEbgrMOKHVwDK0g8D2hrZRFNjDYt33Dq3AIcjpmdNjzw2PemYPUhAgJaiFcZOy0lSzgOq7mtyainSl3ka5rPt224fHdc%2FMcyI31qFQtch5220jm%2FFZPSOVQ4wrSROOofRGbXW3%2BnCzHli6gRPru%2BfkDVB6JWeYTGdCVsJ8pOe7sQ77ElUZfiNZIzNaIlIZKd8KHTfYn5cwOgdn4Sw5ZaOeGFvaoR8FJw9UFCAYSYzmjm0Fuk3f4sqReQNscUEyIGxSApsYbT3b68ZMa9sxjkwoU0llKCMN%2F%2B0nEZZI%2Ba0dhl68QEvjrPChNLs4Z7nqJl7TCgpDkBIDHwxMHcuyhrae5eo71ynNsCIPjivjAPE9H2C6UlI8yrCq3d15UtGn0dwLQ%2BfYHKgQfl6oBoXqfAnCzgEgz2aQLdc6bV1gxCpZKqWyQIyg0b2dwaG%2BZXVRrhmhjIilTJbQ8fiipswcsCAMut7b1UU3elJuHGo%2BDI6oV5EwHFIEcwMGWJpClriBJfzY9W17YNtWMd%2FrmxpmBqmmZhDP71g3pU0loJTFssbSNXsNs8TvpadkKcSJk4QUEDXzcXEY%2FNBScXUK02h%2B5vQdRtkUgmgVIoFgcwIKgKhL5Cg1d3McOWHY86MD0fQOgxWKTUmSBOSW6hjBaFGc0SeW47m66qYMJY75u1Ci1uG77djsG%2Fi2Y5m%2Bf6Lzbf8HFrvimOF2%2FDCcYQ7q3eif7TuBtlZCiOEcOGcGWm1KUrNd5HYE22oUVqoOYrjazb2a4cRM8QFwtGMPWglmIIO6rqCbZhjyoWibp0xNOM6NTBTYse15A7AZEa0nPRCIx1xQM5AbOs5AUqd1KUucESQBBAmyaOe0GSN2h4tKWqf%2FG2MkSDKcI2iKZy4Mnm8FwSBMvERMSFBtDVbg5%2BLsB0FwWOK0%2Fh15puUwVYq61b6SF2e8Cu2wa6hUyXpadYWEckVTJAeRifX%2BYK6oMIqDeK%2BmckYABoSvtlfCqjZfbmifzI%2B69cgiiN2u7HoWz92MgzD2rHCPAqMsUwhGwRkEkdcJ4d7JusjMZzmOpWPdawwlx36qO6LAs91d24OqAckMV4Wika5jaZnV0rpWTMdb4xFeGLnHtxBT8x0gTdHB6sDaXNYwEWA4gppf4HI8ViefPsvt%2FePl9WijsyJnvLdq5jyRx27rP5McWOi65tXtBQtmLQVrZ8y5qRfEsKB069Hw6Lygem%2FTjp4BibqW%2BhFIW6nD8Gye5O3qSV6vN1fX2x%2FAkQq6SM5xghIJot64FFmgHgZ9ranhYgYl16s%2BtSXrTbeBmdVu9SCpMLCksd1D2%2FI6ccKY1ONLNKACNW20gW4ZqpnOzi65nu77Ar1dtkwjWw3dN%2Fs2%2BbTeXl6Xq4erzV03hW%2FvP2xu1vxydbO5u5q8dr4PUH2QHr0i0BwLklomhaoEtWn2D3g3uV1tbl49PIJv%2F67uPq6f4PMfm9vV1frz4NHV6rZ98vHr%2Bk5%2FffVls73XH29f9X75eLfpnirkPQI8eFh9vbn%2Fet39%2BeuD%2Fv%2FxYfXqbv3P56Mv%2FLW6v920pu9PX7HfvofUmtMX7Op8YKzqE51JPFjap4p7NxQVIOgIUBPFQHR2a7IE5kICT5fmU2IvcE%2B20KF0f%2FFBrBVOC6WAtKLfSaqCVFDLiBRK9VJYcUbvWDoOHHZfELk75cuz%2Bfj1QPsqJTp6uRJ163rRjl69ZoC0SwvEudLdbMgZl9ubUWpAY5yFAP4YhmQFANfr7ebyJWBHSyLstKdh%2BkNLKZeTEvnD43Z7fzfKkN29jYAoCgJsJnNY4LDaQNS7yOOXwEdxAb7wjnxIKVfLhwR%2BmGMBH1N1O1Gd3GEzrAqAD2HDODy%2B2g52iTpkc%2FntMZSkW9SIGPdvaxhcK7bsw8u8bq16obXqJgTTYKaWU1Kq%2Bt%2FvZu2rRixUvg%2Bzwjx9XoD9DMCkyXPAwmUNDV8A4on7%2BobLdvatZnpJwNoBdaKpY3%2F8xlQ9%2Bf7%2B%2B3%2FStpT%2B&pcode-icookie=%2FYxono8EdrJ4z8u5kuX29QouWA%2FCLhx89iWl0gC2abSOvLw%2FlEuCuUU49mnsTvd2CuOc27f%2BcR31dq6NgPHKDVtY1N8%3D&imp-id=4&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=58274116272130&ad-session-id=6718821675867421861&target-id=93586041&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fgoo.su&top-ancestor-undetermined=0&pcode-version=718954&pcodever=718954&flash-ver=0&available-width=145&skip-token=yabs.NzIwNTc2MDcxOTUwNDM1NjIKNzIwNTc2MDcyMTQ2MDQ2MjgKNzIwNTc2MDc0Nzg4MzUyMjMKNzIwNTc2MDcxMjcxNDQzNjE%3D&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1268%2C%22h%22%3A939%2C%22width%22%3A1268%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A0%2C%22top%22%3A657%2C%22ad_no%22%3A4%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A2%7D&grab-orig-len=384&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjo1Nn0Kgq6-kTvf80MM9dSIvWpXyDVKKJWAv3dMTrXf_RCJBARtWiSSJVXo23A4YeY8-OPWXpz1OEmSuvgwzkkG-114gvShwyVzD5l2vhdm6JALc4nLZXbCZcKiVHWVqsa84yBy4RbzMSRjYGW68Y3mfg49jQ8pQjU4-GfElzUpMZeUi6GSR07MWczGaz7RJ-eusvVSybEuT2SxZq26n1jNhkO3eH7OPuXMzjrf7LHPYkNozC2OGZnIHp3eeOAfQUXZfOVfixc0G7Xen9VvXcBDK1MqM2lNyB1g7Gi_ApI2EAhEZASpR2QA2yhMVBSQgv8%3D&uniformat=true&callback=Ya%5B6678130917848%5D HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
uniformat: true
uniformat-product-type: Direct
content-encoding: gzip
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
access-control-allow-origin: https://goo.su
x-xss-protection: 1; mode=block
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-yandex-req-id: 1675867368058247-1250903879544891695100108-production-app-host-vla-pcode-459
last-modified: Wed, 08 Feb 2023 14:42:48 GMT
date: Wed, 08 Feb 2023 14:42:48 GMT
set-cookie: yabs-vdrf=A0; domain=an.yandex.ru; path=/; expires=Wed, 15-Feb-2023 14:42:48 GMT
i=sOTFbD/JGAXrcXlPLzLZngOasNVcKjz10igYvAnuO3Ed0fir6YW0syNloC0LYykBw5IWDsqM8hGmbWYNEKtwVmq7KjQ=; Expires=Fri, 07-Feb-2025 14:42:48 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly
content-type: application/json
pragma: no-cache
access-control-allow-credentials: true
timing-allow-origin: *
ssr: true
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 14:42:48 GMT
X-Firefox-Spdy: h2
an.yandex.ru/count/WNCejI_zOEa0JGi0z19yr2AMKqSR2GK0wG4GW8200J7djEDZ000003YKuCm1Y081kG8QKdsaboZv2F02iesT7A0Dy0K1e0Rk0Sa6vr04L79Fj5gf1vdgV85NC2e6-0S1q0Y2W8200lOyGAkPwW00XJyVHp7qWO20W8W4g0-PrVE7-OgCbGQG4DRtxzdQmxkDmG6qZOo-Fk0K0V0LmOhsxAEFlFnZc1QGz-sU1g395l0_s1Q15wWN3T0O8VWOYFRWgDcDnv9wW1c96Mpk2W000000k1d___y1m1dckUkoXUwnarRI6H9vOM9pNtDbSdPbSYzoDpWrBJ7e6P41y1ch1vWQrCDJi1j8k1i3WXmDPJ93Ed5wS7X6ONDcD-aSW1t_Vu0W0eWW3D0X____0TKY__z__u4Z00000000y3yH0383QPWn4JmvzJle9XIRGrhWxMnC34nbQCkQetwFoaA1LBeEZtw1Lpk7QXBL7ANk7CK9FfOnA000~1=WPmejI_zOC80bGm0L1QA7NFCmW7wcFYcwuJWhOe1W07mXw05Y06cizhadG6G0TIRpOFYW8200fW1r9lDWsAu0Ug4d_Kbs066yjUi0U01bfMlcG7e0Re2e0AE-eK1i0Eb0uW5sxmMa0MExZ6m1SdM3BW5oTOCm0NodJx81Ptf3z05Wua5g0Rk0Qa7cUfyWLSmAWQu1u05q0YwY821me201k08X_r2w0a7W0e1-0g0jHZe39C2c0tAopB1i9220PWHhz4heRc05820W0JG5D_TrXxe58m2c1QGz-sU1g395l0_q1R2Yjw-0PWNbxMqBBWN0S0NjTO1e1dk0RWP____0O4Q__zVN-xnwFQe7W6m7m787uFvgrQf8Cnyrtit6-a_k23UtIcG8g_HAv0YiT4ha2AoqIkG8hNHAv0YoTGha2BAr2km8W788W7L8l__V_-18uaZcfcPcPcPsJ-G8xgkwFZExzt9Ym6O8zghuAwXh_Mrmm4C05N0IAnv3HTC38pA6133OJ7cmbxpihdI9Sdr0ypjKYdjue0EDReO31P5~1=WQSejI_zOCy0xGm011Sd7T14pm6ggOsZoV7ZWR81W06QY9t1gyI7vJs80SZEkOQU0P01g8MXbkA0W802c06eXQ6MOhW1ylh7-2NO0QA4vAm1u06MbQ-P0UW1jWIW0hID0g031B03cGA81VES2v05sASWi0MvcmYu1RcR2C05wlmUo0M1y0VG1Sca0wW6xW6f1vdgV85NC2e6k0U01T08keY0WSA0W0RW2Dg60UW91u0A0VWAWBKOw0oJ0fWDoiiomR2GWW6O4Q_HAw6vW1I0W804q1JVtTOUw1IC0fWMaFVjdWQWoHRG5iwVthu1c1UNjRGik1S1m1UrrW6W6Uu1k1d___y1-1dMiu8iWHh__yiC0Sr8rgWU0R0V0iWVaOAoLgaWpVpeQdrOy3-u8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4ZYIEQcPcPcPdPFv0Z-ARghOQ1i--h0PWZsglWhg6lzRN30Gm0sy58d7gDKKIGXih04yEnSCn5sEPbVgnBlgCvEyWgfHqYt_VXJ31Om040~1=WP4ejI_zOC00FGm011QcJhBsm07EgE2uzFcVyRS1W041Y07QxxxJcm6G0QxWdvBaW8200fW1hk2VacIu0VgHfzibs076cCoh0U01se2cfW7e0Qm3-06sYDw-0PW2bAQm6w02_92h5Q031h030kW4mWA81Rls2905nTG9i0NTcWEu1TsQ0y05jfa3o0N_Xm7G1Tzzg0Rk0Qa7cUfyWLSmAWQu1u05q0SMu0Ve2yA2W0RW2Bx8rGhe2GU02W7e39C2c0tAopAXA9WHhz4heRc84W6G4W605820WEWKZ0AO5f3txPu6eCaMq1ONhx_-BhWN0S0NjTO1e1dk0RWP_m616l__fvzbDjb6e1gxzAUmzeoUgo-m7mF87wECvbMu8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4Z0F0_YIEQcTa_a2E9rgdywjgBW8m1c2FPhOZXgPBIpu41300WAWBNmCcjcj5y2D9K1ZhrToRDAY8rB-E9BZamT6UCWcq23W00~1?stat-id=1&test-tag=58274116327985&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&format-type=118&actual-format=10&pcodever=718954&banner-test-tags=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjU3MzkzIiwiNzIwNTc2MDcyMTQ2MDQ2MjgiOiI1NzM5NCIsIjcyMDU3NjA3NDc4ODM1MjIzIjoiNTczOTUifQ%3D%3D&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&width=1268&height=100&confirmTime=2100000&confirmRatio=1000000&wmode=0
302 Found 0 B URL HTTP/2 an.yandex.ru/count/WNCejI_zOEa0JGi0z19yr2AMKqSR2GK0wG4GW8200J7djEDZ000003YKuCm1Y081kG8QKdsaboZv2F02iesT7A0Dy0K1e0Rk0Sa6vr04L79Fj5gf1vdgV85NC2e6-0S1q0Y2W8200lOyGAkPwW00XJyVHp7qWO20W8W4g0-PrVE7-OgCbGQG4DRtxzdQmxkDmG6qZOo-Fk0K0V0LmOhsxAEFlFnZc1QGz-sU1g395l0_s1Q15wWN3T0O8VWOYFRWgDcDnv9wW1c96Mpk2W000000k1d___y1m1dckUkoXUwnarRI6H9vOM9pNtDbSdPbSYzoDpWrBJ7e6P41y1ch1vWQrCDJi1j8k1i3WXmDPJ93Ed5wS7X6ONDcD-aSW1t_Vu0W0eWW3D0X____0TKY__z__u4Z00000000y3yH0383QPWn4JmvzJle9XIRGrhWxMnC34nbQCkQetwFoaA1LBeEZtw1Lpk7QXBL7ANk7CK9FfOnA000~1=WPmejI_zOC80bGm0L1QA7NFCmW7wcFYcwuJWhOe1W07mXw05Y06cizhadG6G0TIRpOFYW8200fW1r9lDWsAu0Ug4d_Kbs066yjUi0U01bfMlcG7e0Re2e0AE-eK1i0Eb0uW5sxmMa0MExZ6m1SdM3BW5oTOCm0NodJx81Ptf3z05Wua5g0Rk0Qa7cUfyWLSmAWQu1u05q0YwY821me201k08X_r2w0a7W0e1-0g0jHZe39C2c0tAopB1i9220PWHhz4heRc05820W0JG5D_TrXxe58m2c1QGz-sU1g395l0_q1R2Yjw-0PWNbxMqBBWN0S0NjTO1e1dk0RWP____0O4Q__zVN-xnwFQe7W6m7m787uFvgrQf8Cnyrtit6-a_k23UtIcG8g_HAv0YiT4ha2AoqIkG8hNHAv0YoTGha2BAr2km8W788W7L8l__V_-18uaZcfcPcPcPsJ-G8xgkwFZExzt9Ym6O8zghuAwXh_Mrmm4C05N0IAnv3HTC38pA6133OJ7cmbxpihdI9Sdr0ypjKYdjue0EDReO31P5~1=WQSejI_zOCy0xGm011Sd7T14pm6ggOsZoV7ZWR81W06QY9t1gyI7vJs80SZEkOQU0P01g8MXbkA0W802c06eXQ6MOhW1ylh7-2NO0QA4vAm1u06MbQ-P0UW1jWIW0hID0g031B03cGA81VES2v05sASWi0MvcmYu1RcR2C05wlmUo0M1y0VG1Sca0wW6xW6f1vdgV85NC2e6k0U01T08keY0WSA0W0RW2Dg60UW91u0A0VWAWBKOw0oJ0fWDoiiomR2GWW6O4Q_HAw6vW1I0W804q1JVtTOUw1IC0fWMaFVjdWQWoHRG5iwVthu1c1UNjRGik1S1m1UrrW6W6Uu1k1d___y1-1dMiu8iWHh__yiC0Sr8rgWU0R0V0iWVaOAoLgaWpVpeQdrOy3-u8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4ZYIEQcPcPcPdPFv0Z-ARghOQ1i--h0PWZsglWhg6lzRN30Gm0sy58d7gDKKIGXih04yEnSCn5sEPbVgnBlgCvEyWgfHqYt_VXJ31Om040~1=WP4ejI_zOC00FGm011QcJhBsm07EgE2uzFcVyRS1W041Y07QxxxJcm6G0QxWdvBaW8200fW1hk2VacIu0VgHfzibs076cCoh0U01se2cfW7e0Qm3-06sYDw-0PW2bAQm6w02_92h5Q031h030kW4mWA81Rls2905nTG9i0NTcWEu1TsQ0y05jfa3o0N_Xm7G1Tzzg0Rk0Qa7cUfyWLSmAWQu1u05q0SMu0Ve2yA2W0RW2Bx8rGhe2GU02W7e39C2c0tAopAXA9WHhz4heRc84W6G4W605820WEWKZ0AO5f3txPu6eCaMq1ONhx_-BhWN0S0NjTO1e1dk0RWP_m616l__fvzbDjb6e1gxzAUmzeoUgo-m7mF87wECvbMu8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4Z0F0_YIEQcTa_a2E9rgdywjgBW8m1c2FPhOZXgPBIpu41300WAWBNmCcjcj5y2D9K1ZhrToRDAY8rB-E9BZamT6UCWcq23W00~1?stat-id=1&test-tag=58274116327985&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&format-type=118&actual-format=10&pcodever=718954&banner-test-tags=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjU3MzkzIiwiNzIwNTc2MDcyMTQ2MDQ2MjgiOiI1NzM5NCIsIjcyMDU3NjA3NDc4ODM1MjIzIjoiNTczOTUifQ%3D%3D&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&width=1268&height=100&confirmTime=2100000&confirmRatio=1000000&wmode=0
IP
GET /count/WNCejI_zOEa0JGi0z19yr2AMKqSR2GK0wG4GW8200J7djEDZ000003YKuCm1Y081kG8QKdsaboZv2F02iesT7A0Dy0K1e0Rk0Sa6vr04L79Fj5gf1vdgV85NC2e6-0S1q0Y2W8200lOyGAkPwW00XJyVHp7qWO20W8W4g0-PrVE7-OgCbGQG4DRtxzdQmxkDmG6qZOo-Fk0K0V0LmOhsxAEFlFnZc1QGz-sU1g395l0_s1Q15wWN3T0O8VWOYFRWgDcDnv9wW1c96Mpk2W000000k1d___y1m1dckUkoXUwnarRI6H9vOM9pNtDbSdPbSYzoDpWrBJ7e6P41y1ch1vWQrCDJi1j8k1i3WXmDPJ93Ed5wS7X6ONDcD-aSW1t_Vu0W0eWW3D0X____0TKY__z__u4Z00000000y3yH0383QPWn4JmvzJle9XIRGrhWxMnC34nbQCkQetwFoaA1LBeEZtw1Lpk7QXBL7ANk7CK9FfOnA000~1=WPmejI_zOC80bGm0L1QA7NFCmW7wcFYcwuJWhOe1W07mXw05Y06cizhadG6G0TIRpOFYW8200fW1r9lDWsAu0Ug4d_Kbs066yjUi0U01bfMlcG7e0Re2e0AE-eK1i0Eb0uW5sxmMa0MExZ6m1SdM3BW5oTOCm0NodJx81Ptf3z05Wua5g0Rk0Qa7cUfyWLSmAWQu1u05q0YwY821me201k08X_r2w0a7W0e1-0g0jHZe39C2c0tAopB1i9220PWHhz4heRc05820W0JG5D_TrXxe58m2c1QGz-sU1g395l0_q1R2Yjw-0PWNbxMqBBWN0S0NjTO1e1dk0RWP____0O4Q__zVN-xnwFQe7W6m7m787uFvgrQf8Cnyrtit6-a_k23UtIcG8g_HAv0YiT4ha2AoqIkG8hNHAv0YoTGha2BAr2km8W788W7L8l__V_-18uaZcfcPcPcPsJ-G8xgkwFZExzt9Ym6O8zghuAwXh_Mrmm4C05N0IAnv3HTC38pA6133OJ7cmbxpihdI9Sdr0ypjKYdjue0EDReO31P5~1=WQSejI_zOCy0xGm011Sd7T14pm6ggOsZoV7ZWR81W06QY9t1gyI7vJs80SZEkOQU0P01g8MXbkA0W802c06eXQ6MOhW1ylh7-2NO0QA4vAm1u06MbQ-P0UW1jWIW0hID0g031B03cGA81VES2v05sASWi0MvcmYu1RcR2C05wlmUo0M1y0VG1Sca0wW6xW6f1vdgV85NC2e6k0U01T08keY0WSA0W0RW2Dg60UW91u0A0VWAWBKOw0oJ0fWDoiiomR2GWW6O4Q_HAw6vW1I0W804q1JVtTOUw1IC0fWMaFVjdWQWoHRG5iwVthu1c1UNjRGik1S1m1UrrW6W6Uu1k1d___y1-1dMiu8iWHh__yiC0Sr8rgWU0R0V0iWVaOAoLgaWpVpeQdrOy3-u8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4ZYIEQcPcPcPdPFv0Z-ARghOQ1i--h0PWZsglWhg6lzRN30Gm0sy58d7gDKKIGXih04yEnSCn5sEPbVgnBlgCvEyWgfHqYt_VXJ31Om040~1=WP4ejI_zOC00FGm011QcJhBsm07EgE2uzFcVyRS1W041Y07QxxxJcm6G0QxWdvBaW8200fW1hk2VacIu0VgHfzibs076cCoh0U01se2cfW7e0Qm3-06sYDw-0PW2bAQm6w02_92h5Q031h030kW4mWA81Rls2905nTG9i0NTcWEu1TsQ0y05jfa3o0N_Xm7G1Tzzg0Rk0Qa7cUfyWLSmAWQu1u05q0SMu0Ve2yA2W0RW2Bx8rGhe2GU02W7e39C2c0tAopAXA9WHhz4heRc84W6G4W605820WEWKZ0AO5f3txPu6eCaMq1ONhx_-BhWN0S0NjTO1e1dk0RWP_m616l__fvzbDjb6e1gxzAUmzeoUgo-m7mF87wECvbMu8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4Z0F0_YIEQcTa_a2E9rgdywjgBW8m1c2FPhOZXgPBIpu41300WAWBNmCcjcj5y2D9K1ZhrToRDAY8rB-E9BZamT6UCWcq23W00~1?stat-id=1&test-tag=58274116327985&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&format-type=118&actual-format=10&pcodever=718954&banner-test-tags=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjU3MzkzIiwiNzIwNTc2MDcyMTQ2MDQ2MjgiOiI1NzM5NCIsIjcyMDU3NjA3NDc4ODM1MjIzIjoiNTczOTUifQ%3D%3D&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&width=1268&height=100&confirmTime=2100000&confirmRatio=1000000&wmode=0 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/count/WN0ejI_zOEa0DGi0b19yr2AMpHMKz0K0wG4GmO200J7djEDZ000003YKuCm1Y081kG8QKdsaboZv2F02iesT7A0Dy0K1e0Rk0Sa6vr04L79Fj5gf1vdgV85NC2e6-0S1q0Y2W8200lOyGAkPwW00XJyVHp7qWO20W8W4g0-PrVE7-OgCbGQG4DRtxzdQmxkDmG6qZOo-Fk0K0V0LmOhsxAEFlFnZc1QGz-sU1g395l0_s1Q15wWN3T0O8VWOYFRWgDcDnv9wW1c96Mpkk1d___y1m1dckUkoXUwnarRI6H9vOM9pNtDbSdPbSYzoDpWrBJ7e6P41y1ch1vWQrCDJi1j8k1i3WXmDPJ93Ed5wS7X6ONDcD-aSW1t_Vu0W0eWW3D0X____0TKY__z__u4Z00000000y3yI0383QPWn4JmvzJiQuOwy2INaa1PuEniJ0rCPshBcgD-ZPg43idGT7lq2htOErIIgEKhTEOeJV2nZK000~1=WP4ejI_zOC00FGm011QcJhBsm07EgE2uzFcVyRS1W041Y07QxxxJcm6G0QxWdvBaW8200fW1hk2VacIu0VgHfzibs076cCoh0U01se2cfW7e0Qm3-06sYDw-0PW2bAQm6w02_92h5Q031h030kW4mWA81Rls2905nTG9i0NTcWEu1TsQ0y05jfa3o0N_Xm7G1Tzzg0Rk0Qa7cUfyWLSmAWQu1u05q0SMu0Ve2yA2W0RW2Bx8rGhe2GU02W7e39C2c0tAopAXA9WHhz4heRc84W6G4W605820WEWKZ0AO5f3txPu6eCaMq1ONhx_-BhWN0S0NjTO1e1dk0RWP_m616l__fvzbDjb6e1gxzAUmzeoUgo-m7mF87wECvbMu8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4Z0F0_YIEQcTa_a2E9rgdywjgBW8m1c2FPhOZXgPBIpu41300WAWBNmCcjcj5y2D9K1ZhrToRDAY8rB-E9BZamT6UCWcq23W00~1=WQSejI_zOCy0xGm011Sd7T14pm6ggOsZoV7ZWR81W06QY9t1gyI7vJs80SZEkOQU0P01g8MXbkA0W802c06eXQ6MOhW1ylh7-2NO0QA4vAm1u06MbQ-P0UW1jWIW0hID0g031B03cGA81VES2v05sASWi0MvcmYu1RcR2C05wlmUo0M1y0VG1Sca0wW6xW6f1vdgV85NC2e6k0U01T08keY0WSA0W0RW2Dg60UW91u0A0VWAWBKOw0oJ0fWDoiiomR2GWW6O4Q_HAw6vW1I0W804q1JVtTOUw1IC0fWMaFVjdWQWoHRG5iwVthu1c1UNjRGik1S1m1UrrW6W6Uu1k1d___y1-1dMiu8iWHh__yiC0Sr8rgWU0R0V0iWVaOAoLgaWpVpeQdrOy3-u8DxTAP0Yhz4ha2AnqIkG8hBHAv0YjT4ha2B9r2kG8ihKAx0Y0SWY0TKY__z__u4ZYIEQcPcPcPdPFv0Z-ARghOQ1i--h0PWZsglWhg6lzRN30Gm0sy58d7gDKKIGXih04yEnSCn5sEPbVgnBlgCvEyWgfHqYt_VXJ31Om040~1=WQ8ejI_zOCS0nGm0j1Q_5npZnm4GW8200VgO-ARhXE2jYW600V27e0M80QQpskIT0P01r9lDW-A0W802c07Kcys3OhW1weIVzINO0ORorwm1u06MbQ-P0UW1kWAW0exwXG6m0wK3Y0NRl1QG1OxkCR05oTOCk0N9rWp01VATFiW5dUaFq0M3YGMe1ku1gGUPwdo1Lp0g1hW7W0NG2Bg8W872W806u0Y7_KBe2GU02W7u2e2r6EWCamAO3ShBCi6ma881c16lqIkX4PgPcPcPcRc05820W0JG5D_TrXxe58m2c1QGz-sU1g395l0_q1R2Yjw-0PWNbxMqBBWN0S0NjTO1e1dk0RWP____0O4Q__zVN-xnwFQe7W6m7m787uFvgrQf8Cnyrtit6-a_k23UtIcG8g_HAv0YiT4ha2AoqIkG8hNHAv0YoTGha2BAr2km8W788W7L8l__V_-18uaZsJ-G8xgkwFZExzt9Ym6O8zghuAwXh_Mrmm4C044RM0MCdAJNoCR4QAWCB34SgurPsAbIIKuWO6whIcaNXtQeqKLZiF02~1?stat-id=1&test-tag=58274116327985&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&format-type=118&actual-format=10&pcodever=718954&banner-test-tags=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjU3MzkzIiwiNzIwNTc2MDcyMTQ2MDQ2MjgiOiI1NzM5NCIsIjcyMDU3NjA3NDc4ODM1MjIzIjoiNTczOTUifQ%3D%3D&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&width=1268&height=100&confirmTime=2100000&confirmRatio=1000000&wmode=0
date: Wed, 08 Feb 2023 14:42:50 GMT
access-control-allow-origin: https://goo.su
set-cookie: yandexuid=5061932521675867370; domain=.yandex.ru; path=/; expires=Sat, 05-Feb-2033 14:42:50 GMT
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
expires: Wed, 08 Feb 2023 14:42:50 GMT
last-modified: Wed, 08 Feb 2023 14:42:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/system/context.js
200 OK 0 B URL HTTP/2 an.yandex.ru/system/context.js
IP
GET /system/context.js HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-origin: *
expires: Wed, 08 Feb 2023 15:42:46 GMT
x-yandex-req-id: 1675867366910003-1428019744802530466800109-production-app-host-vla-pcode-281
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1GXtiR6P0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8yYGgumWhNSP6MGO6FuopWAApsK2YQnbYWAIPvd-0y4h9e7FJowfpNp5mC3wHDdTy0ihmryc5f3bpAn0ifTP4KXEPGPfcylC1hAGcOb10MGVoqRcfNjSaxVpsCMUP7vkOkzqzfzppLMmohjWyYUpWnC_nBaifrwT0RDMi1mIty3o7mOOTo2n3o2nRx90FFN1_Y7BiGRr_KOfr-tVie2yje2LzoGhrmmkiFG5reQ61fQRhC_kH8KL75SB-yeAqjt1ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLojagpCAzoIonECt_91hFm9vmraVrxmiSyUzktzhFOsSmDBInDJJQmC-rWvpd1Blw0lVrMqyv9dpOivlx1pWC0e4YbZW00
200 OK 0 B URL HTTP/2 an.yandex.ru/rtbcount/1GXtiR6P0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8yYGgumWhNSP6MGO6FuopWAApsK2YQnbYWAIPvd-0y4h9e7FJowfpNp5mC3wHDdTy0ihmryc5f3bpAn0ifTP4KXEPGPfcylC1hAGcOb10MGVoqRcfNjSaxVpsCMUP7vkOkzqzfzppLMmohjWyYUpWnC_nBaifrwT0RDMi1mIty3o7mOOTo2n3o2nRx90FFN1_Y7BiGRr_KOfr-tVie2yje2LzoGhrmmkiFG5reQ61fQRhC_kH8KL75SB-yeAqjt1ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLojagpCAzoIonECt_91hFm9vmraVrxmiSyUzktzhFOsSmDBInDJJQmC-rWvpd1Blw0lVrMqyv9dpOivlx1pWC0e4YbZW00
IP
GET /rtbcount/1GXtiR6P0V0100000000U9nJVBv7NBkhUtQjuSnN7V9P1bfibi-tF4vc009Fc4Yeq-QvcR5SCoGPKXc1ufapN_qG0ecNCWDvjUL0efKHH7Q2P860YM4cuo5k27iXem4xXBMISI4JXBMNqNAB8CDHCFyi8yYGgumWhNSP6MGO6FuopWAApsK2YQnbYWAIPvd-0y4h9e7FJowfpNp5mC3wHDdTy0ihmryc5f3bpAn0ifTP4KXEPGPfcylC1hAGcOb10MGVoqRcfNjSaxVpsCMUP7vkOkzqzfzppLMmohjWyYUpWnC_nBaifrwT0RDMi1mIty3o7mOOTo2n3o2nRx90FFN1_Y7BiGRr_KOfr-tVie2yje2LzoGhrmmkiFG5reQ61fQRhC_kH8KL75SB-yeAqjt1ri0oW-tAuU05RDrxDcze_NjcVzbADfWn1zWyJh0nFsBZJJLojagpCAzoIonECt_91hFm9vmraVrxmiSyUzktzhFOsSmDBInDJJQmC-rWvpd1Blw0lVrMqyv9dpOivlx1pWC0e4YbZW00 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1SOAAMgQ0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzbP0QAN6K4QRtBo233mF2NSHPGV2uJI6GjKnIGFClq7mXUCGauMeXCclcAWU7nJqrtmo-i37-PG2vePMO5ahtCYa1oAZD8srnca9qhcPaO543siMnaNhh7DNaxZrtiIUON4zpUluXUAN0LhF8kcFp9xE343t4koyLNPy2i5Ipd13Qm_8S1nXr8x0D8x9ii44zzi7_8Sgn1VRzHodNxjomWhorWvJt9slg22onzWRMXeO7b9kkpEr5X1SVLmhwoWdHti3Mmp62xSZXu0LltdiqRMl-UsL-saWrcp04sZnDip8_OU5EDdAsyIdCDt1EBqynVii4i_0bdJMJ_dl0npzxshVqiTZPpGmjBKvCDx4mxs7bEi8i_O6-_rRHpqgSDYxb_iFC008pHfP00
200 OK 0 B URL HTTP/2 an.yandex.ru/rtbcount/1SOAAMgQ0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzbP0QAN6K4QRtBo233mF2NSHPGV2uJI6GjKnIGFClq7mXUCGauMeXCclcAWU7nJqrtmo-i37-PG2vePMO5ahtCYa1oAZD8srnca9qhcPaO543siMnaNhh7DNaxZrtiIUON4zpUluXUAN0LhF8kcFp9xE343t4koyLNPy2i5Ipd13Qm_8S1nXr8x0D8x9ii44zzi7_8Sgn1VRzHodNxjomWhorWvJt9slg22onzWRMXeO7b9kkpEr5X1SVLmhwoWdHti3Mmp62xSZXu0LltdiqRMl-UsL-saWrcp04sZnDip8_OU5EDdAsyIdCDt1EBqynVii4i_0bdJMJ_dl0npzxshVqiTZPpGmjBKvCDx4mxs7bEi8i_O6-_rRHpqgSDYxb_iFC008pHfP00
IP
GET /rtbcount/1SOAAMgQ0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzbP0QAN6K4QRtBo233mF2NSHPGV2uJI6GjKnIGFClq7mXUCGauMeXCclcAWU7nJqrtmo-i37-PG2vePMO5ahtCYa1oAZD8srnca9qhcPaO543siMnaNhh7DNaxZrtiIUON4zpUluXUAN0LhF8kcFp9xE343t4koyLNPy2i5Ipd13Qm_8S1nXr8x0D8x9ii44zzi7_8Sgn1VRzHodNxjomWhorWvJt9slg22onzWRMXeO7b9kkpEr5X1SVLmhwoWdHti3Mmp62xSZXu0LltdiqRMl-UsL-saWrcp04sZnDip8_OU5EDdAsyIdCDt1EBqynVii4i_0bdJMJ_dl0npzxshVqiTZPpGmjBKvCDx4mxs7bEi8i_O6-_rRHpqgSDYxb_iFC008pHfP00 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:48 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1P0x7S6L0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsK4QReA9kyoCiWmCFnbd0KKdyi44bdB50KappBz1u9NJ0BVR1nMptm5jCvUtjtm2ol3NoOMaENCh42obraHI4vb1ccRoym6if2PYK41P1_BHkQbUroJj_FOnPvaVfwpuqkkNRp4LR3Aks3o9xE34p_4kInpNvq1irQml5VRmF8V1XXt8B4F8B5lia0yzS7-8Skn1lNzHYdNxT-oWBosW9Nt96lEEowmz0NMXeO6bfkip-v4XHKSLmlxoWhItS7Mm3A3xShXu0LitNisRsZzUsP_sKesc347s3nEi34_OkDDDNAsAgmgg71BB4upVya6i_0dd3MH_Nl2npnxsxVsizZPp0qjB4rDDh0pxM3dES4k_e2z_LRJpacVDYpc_i7E0m3V4APF?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8325958780532&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&width=1268&height=100
200 OK 0 B URL HTTP/2 an.yandex.ru/rtbcount/1P0x7S6L0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsK4QReA9kyoCiWmCFnbd0KKdyi44bdB50KappBz1u9NJ0BVR1nMptm5jCvUtjtm2ol3NoOMaENCh42obraHI4vb1ccRoym6if2PYK41P1_BHkQbUroJj_FOnPvaVfwpuqkkNRp4LR3Aks3o9xE34p_4kInpNvq1irQml5VRmF8V1XXt8B4F8B5lia0yzS7-8Skn1lNzHYdNxT-oWBosW9Nt96lEEowmz0NMXeO6bfkip-v4XHKSLmlxoWhItS7Mm3A3xShXu0LitNisRsZzUsP_sKesc347s3nEi34_OkDDDNAsAgmgg71BB4upVya6i_0dd3MH_Nl2npnxsxVsizZPp0qjB4rDDh0pxM3dES4k_e2z_LRJpacVDYpc_i7E0m3V4APF?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8325958780532&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&width=1268&height=100
IP
GET /rtbcount/1P0x7S6L0V0100000000U9nJV1x04bBaloNASEQhFnF23RJOB9zlUPpC00IUC97GQKfNQcAvPaWof382nJDdlgff18cNWdYrvK2YbH54TeBuGC34C9CnNnZ2NiZemWvXhMHSmGHXxMLiukLZE0hcdsK4QReA9kyoCiWmCFnbd0KKdyi44bdB50KappBz1u9NJ0BVR1nMptm5jCvUtjtm2ol3NoOMaENCh42obraHI4vb1ccRoym6if2PYK41P1_BHkQbUroJj_FOnPvaVfwpuqkkNRp4LR3Aks3o9xE34p_4kInpNvq1irQml5VRmF8V1XXt8B4F8B5lia0yzS7-8Skn1lNzHYdNxT-oWBosW9Nt96lEEowmz0NMXeO6bfkip-v4XHKSLmlxoWhItS7Mm3A3xShXu0LitNisRsZzUsP_sKesc347s3nEi34_OkDDDNAsAgmgg71BB4upVya6i_0dd3MH_Nl2npnxsxVsizZPp0qjB4rDDh0pxM3dES4k_e2z_LRJpacVDYpc_i7E0m3V4APF?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8325958780532&pcode-active-testids=719186%2C0%2C24%3B716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE5NTA0MzU2MiI6IjQxOXgxMDAiLCI3MjA1NzYwNzIxNDYwNDYyOCI6IjQxOXgxMDAiLCI3MjA1NzYwNzQ3ODgzNTIyMyI6IjQxOXgxMDAifQ%3D%3D&width=1268&height=100 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:50 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:50 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/rtbcount/1JuG_boN0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzb16cw2YRlCZB8C33yPPm559_B119PonG59Cyo_GU2Lqm2ZXOYasQ-Oc1u_5FJtV0BAyDV9f0BMfbPWMGlioAGdCeCqZQN6MJdIcOc1WMGVImRcPVkSKtUpcCNUvBvnGItzo-YLmfS1Qky2oP_CZiuyKESotBnrHamQmNBEO4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFihQ-u09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sShhz9S0_V4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my08drfOu0?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8048075247939&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE2MTc3NzYxNCI6IjQxOXgxNTAiLCI3MjA1NzYwNTM4MTcwMjU1MSI6IjQxOXgxNTAiLCI3MjA1NzYwNzQ0NTcxNTUxNCI6IjQxOXgxNTAifQ%3D%3D&width=1268&height=150
200 OK 0 B URL HTTP/2 an.yandex.ru/rtbcount/1JuG_boN0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzb16cw2YRlCZB8C33yPPm559_B119PonG59Cyo_GU2Lqm2ZXOYasQ-Oc1u_5FJtV0BAyDV9f0BMfbPWMGlioAGdCeCqZQN6MJdIcOc1WMGVImRcPVkSKtUpcCNUvBvnGItzo-YLmfS1Qky2oP_CZiuyKESotBnrHamQmNBEO4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFihQ-u09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sShhz9S0_V4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my08drfOu0?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8048075247939&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE2MTc3NzYxNCI6IjQxOXgxNTAiLCI3MjA1NzYwNTM4MTcwMjU1MSI6IjQxOXgxNTAiLCI3MjA1NzYwNzQ0NTcxNTUxNCI6IjQxOXgxNTAifQ%3D%3D&width=1268&height=150
IP
GET /rtbcount/1JuG_boN0V0100000000U9nJVF76ekG9--SAmvcl3fGt6MYnMRxOyZYP0GWyOIAXdeQccR5SCoGPKXc1ufapNqt91ecNiW1vjUL0efKHH7Q2P860YM4ceny7XBsGKOaDmbh9QCS4OUrb37TKOpWAvfzb16cw2YRlCZB8C33yPPm559_B119PonG59Cyo_GU2Lqm2ZXOYasQ-Oc1u_5FJtV0BAyDV9f0BMfbPWMGlioAGdCeCqZQN6MJdIcOc1WMGVImRcPVkSKtUpcCNUvBvnGItzo-YLmfS1Qky2oP_CZiuyKESotBnrHamQmNBEO4DBFzXW7474li04lic2yHJ7-mViXnhKDzlb7BT_YqBo6iBM7bFihQ-u09BNs1jQ6XWkSdwx4vKMC5njR2lh23T7MmDB3FOhXmENi3MlMVpXjQ_P_QNhMI36NE0pUC46_CZDjvK8sShhz9S0_V4uZJpbsmm2t_2MHFPloTypBEtVMi_YvtDtD32qjHa0plJ3dQU4-pY3zZRRpNjdFHfmsBk7-my08drfOu0?confirmTime=2100000&confirmRatio=1000000&test-tag=58274116272130&format-type=118&actual-format=10&rnd=8048075247939&pcode-active-testids=716645%2C0%2C26&banner-sizes=eyI3MjA1NzYwNzE2MTc3NzYxNCI6IjQxOXgxNTAiLCI3MjA1NzYwNTM4MTcwMjU1MSI6IjQxOXgxNTAiLCI3MjA1NzYwNzQ0NTcxNTUxNCI6IjQxOXgxNTAifQ%3D%3D&width=1268&height=150 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://goo.su
Connection: keep-alive
Referer: https://goo.su/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 08 Feb 2023 14:42:50 GMT
access-control-allow-origin: https://goo.su
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 08 Feb 2023 14:42:50 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 08 Feb 2023 14:42:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
104.21.38.221
93.184.220.29
142.250.74.106
178.154.131.215
23.36.76.226