edo.vchasno.ua/app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info&utm_campaign=sign_request_to_colleague&utm_medium=email&folder_id=6006&cid=143f56e8-045c-498f-9486-07fdb045b35b
302 Found 10 B URL User Request GET HTTP/2 edo.vchasno.ua/app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info&utm_campaign=sign_request_to_colleague&utm_medium=email&folder_id=6006&cid=143f56e8-045c-498f-9486-07fdb045b35b
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type ASCII text, with no line terminators
Hash a8e03540dce77ac5043211d114328eb8
d7ddfe518c491af3a0dc594fa6890ae3dbd45a7b
2df1e0cd7190e6485b41ba12f0a445a2422a720cc97e6419160206383a481c5c
GET /app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info&utm_campaign=sign_request_to_colleague&utm_medium=email&folder_id=6006&cid=143f56e8-045c-498f-9486-07fdb045b35b HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 05 Dec 2023 11:48:07 GMT
content-type: text/plain; charset=utf-8
content-length: 10
location: /auth/login
x-frame-options: DENY
x-content-type-options: nosniff
feature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *
x-request-id: 097c7f14-6dc4-45a5-bd07-6cc336df4f06
set-cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; expires=Thu, 04-Jan-2024 11:48:07 GMT; HttpOnly; Max-Age=2592000; Path=/; Secure
vchasno_auth=w653991b584044308b8c820f1c87e427a; Domain=.vchasno.ua; HttpOnly; Max-Age=2592000; Path=/; SameSite=None; Secure
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BY40fndi7hys%2F5yNEtz3lF0Z9fQowByRey8loedAR21XsoM9v%2BOpXAGYHyTTcq1s5oB5RZ1Nv0lXL7ad4z%2FAA3jNrxZPxDmybdWBME6xEzB0z0M9vMj8PFz5r40KTxpo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ee71e9eb529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PRJ9TST
200 OK 80 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PRJ9TST
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (21796)
Hash 7108aa397ba86f9a2132f06b1c7647f6
76036321dc2969a5e3725fb629c72cce4ab4c956
0ab932fc81d2cbd9486e9f74e5e13e7d74a674438d971659d46a01a99f07a2cb
GET /gtm.js?id=GTM-PRJ9TST HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:07 GMT
expires: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-KDBP5SJ
200 OK 105 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KDBP5SJ
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (59254)
Size 105 kB (105178 bytes)
Hash 93553159e4ee2984ea290725ce3d1be0
9fc71cef6c704b3811dd6e716c398319265e463a
237098fa093385e7e30f336b8a73e623196d5b5f766c60e4d9de7520426e8748
GET /gtm.js?id=GTM-KDBP5SJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:07 GMT
expires: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 105178
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css
200 OK 30 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type ASCII text, with very long lines (938)
Hash 628cfbb1340864520dd780c96260c6ed
ac1ccafe3b6beea107acd164c6792db17513c753
9fa3fbf07172065a3d06c7010e62bef8959b8d412c4a1b97889b0fc8de58cb9f
GET /cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:07 GMT
content-type: text/css
x-amz-id-2: UYPdNcXQckh2czlkvzbehGKNR9xPaJXUkaF5YawEaE0n8NTI6QA90EJu8MPFLT3qDbyGoiWIsL4=
x-amz-request-id: 2ZJBG5A2JYXRYC8E
last-modified: Wed, 29 Nov 2023 14:54:04 GMT
etag: W/"373f4240a4ca507d79897cb5cf9d0bd5"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1701269603/ctime:1701269608/gid:0/gname:root/md5:373f4240a4ca507d79897cb5cf9d0bd5/mode:33188/mtime:1701269603/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: HIT
age: 506045
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=82%2FyecqOqKDPlSr2Ry1%2FT76%2FYige9bibOS9aWYK60wPFqiJztwwaPNH2UsAMUiCNShz%2FCFOVYrxvH3qFrCzVFKdu2SbSh53PCLw9gfDgx02bT4Dif%2FWePQHEMXenI1HO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0eeb3e3756ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP
200 OK 90 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash a3b02909b9d47ea3a5919eccdb3a7934
7143470c14600382041f39a3ecffe1b54b50d37b
0899d7f3c70b283f09ad6b86f35c3a8ca82be7c5aa5a518ad70c0ea1ab898364
GET /gtag/js?id=G-HF2XZD4ZQP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:07 GMT
expires: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89684
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
728 B URL zerossl.ocsp.sectigo.com/
IP
Hash aa17f2b244d61e4b8f842695caa655ab
867d5c9d964414e913d3a64f4df378d7eb33a5da
c54cf7b7ba138d6013512a47ac72f15d6995be9ec8b107532a02b55ac6af311e
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 11:48:07 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sat, 02 Dec 2023 23:02:03 GMT
Expires: Sat, 09 Dec 2023 23:02:02 GMT
Etag: "867d5c9d964414e913d3a64f4df378d7eb33a5da"
Cache-Control: max-age=386931,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 830c0eec5ecf5687-OSL
www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP&l=dataLayer&cx=c
200 OK 90 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP&l=dataLayer&cx=c
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash f96fe177190ca5466c98fbfd80da9893
432b569ed107a5ccb72ba0346bbbff123c8fa836
7433378f87ed7e6bcf1adcc517a667eec8eccf52fd09b817211e1407d848d9e1
GET /gtag/js?id=G-HF2XZD4ZQP&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:07 GMT
expires: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=UA-88652144-25&l=dataLayer&cx=c
200 OK 68 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=UA-88652144-25&l=dataLayer&cx=c
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash c5acce7f2ff1062b1deac3d1f7d11d35
338b45bb794e4eae1859656eb14739051d46c4eb
a532d805abf5191b3b6eff348e75aa8d188cd8b7199a2d7fa119a7a394dfe514
GET /gtag/js?id=UA-88652144-25&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:07 GMT
expires: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68325
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gotcha.c.prom.st/gotcha-min.js
200 OK 1.3 kB URL GET HTTP/2 gotcha.c.prom.st/gotcha-min.js
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerZeroSSL
Subjectc.prom.st
Fingerprint58:10:BC:20:4A:8C:83:1D:55:58:83:87:47:45:A5:66:E6:7C:EA:8B
ValidityFri, 10 Nov 2023 00:00:00 GMT - Thu, 08 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (2989), with no line terminators
Hash 3cc8c96df23f3af7bef99624151ae9be
36a441231ca6ea354c853a21edc3e1d2722b27f3
64b797a0ce98432b9720aa97a2a7a6e7f7d86348832f7f06d985d0b0e403debf
GET /gotcha-min.js HTTP/1.1
Host: gotcha.c.prom.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: application/javascript
content-length: 1321
last-modified: Fri, 24 Mar 2023 12:03:13 GMT
x-rgw-object-type: Normal
cache-control: public,max-age=259200
content-encoding: gzip
x-amz-storage-class: STANDARD
x-amz-request-id: tx00000000000005283e235-00656c94c5-4a1be2c6-openstack-1
x-trouble: IAMHERE
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: X-CSRFToken, X-PromUserID, Content-Type, X-Requested-With, X-Image-Hashes, X-LANGUAGE, X-Test-Mode, X-Cache-Status, X-Cache-Key
x-cache-key: cdngotcha.c.prom.st/gotcha-min.js
x-cache-status: HIT, HIT
x-cache-source: local
x-servant: sidewinder
x-cache-type: main
accept-ranges: bytes
x-lb-name: sidewinder
x-cdn-ruri: /gotcha-min.js
x-lb-fallback: true
X-Firefox-Spdy: h2
widget.asky.guru/askyguru.js
200 OK 27 kB URL GET HTTP/2 widget.asky.guru/askyguru.js
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerLet's Encrypt
Subjectasky.guru
Fingerprint38:B3:F3:A8:D6:B4:18:A7:03:47:E5:29:41:EF:15:F1:A7:99:36:37
ValiditySun, 03 Dec 2023 13:10:14 GMT - Sat, 02 Mar 2024 13:10:13 GMT
File type Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Hash 33fb4b865e97e991dbf5b8449171c10a
18082082834812164be5541418cec0167cc6e2b8
4fe4d1da510bc5eb8f34a416d4f2d04e4204279c59ff3a990d613f8cc7f8ea0b
GET /askyguru.js HTTP/1.1
Host: widget.asky.guru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edo.vchasno.ua
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: application/javascript
content-length: 26579
x-guploader-uploadid: ABPtcPo8c9LOj1_og2MMSXjHzL4gVwvI2jgyIS08HYxYO5p3ULZgSq0e1bsyn82Skez24JeJ1nE
x-goog-generation: 1609935317322885
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 26579
content-encoding: gzip
x-goog-hash: crc32c=pNdJkQ==, md5=MHD5b7u6XKYUyoXtbjuaAg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Fri, 29 Nov 2024 06:15:10 GMT
cache-control: max-age=86400, no-transform
last-modified: Wed, 06 Jan 2021 12:15:17 GMT
etag: "3070f96fbbba5ca614ca85ed6e3b9a02"
age: 451978
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w2ae3I8P%2F%2BoLxBDta%2FUg2d4gPaIC2qxIB5EcLQb1DU0xczDi%2BoIlUWPKY%2Fx78Vrlt2XwhexlR3f1fxklPH5L6LVIVZfPXSveQKgc45n%2BP6V%2FB8o%2B22xfdlSkHP1MHT2CINbf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c0eeead2db52d-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-5EE52G3WCQ&l=dataLayer&cx=c
200 OK 107 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-5EE52G3WCQ&l=dataLayer&cx=c
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (25695)
Size 107 kB (107321 bytes)
Hash 0d2960c0ccb6bee8058ca0cf056c05e3
921b4ca6a1578cf31c8fb1cbdac7ce0932c06467
d8ec3fe2ff194bb1e922d794b9c3f27e4e5e63ed9779ef61cfd7f1773fe13715
GET /gtag/js?id=G-5EE52G3WCQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:08 GMT
expires: Tue, 05 Dec 2023 11:48:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107321
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-YT5V9MV99B&l=dataLayer&cx=c
200 OK 94 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-YT5V9MV99B&l=dataLayer&cx=c
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 33253dd171b4962b229ce703ea1dfcd1
2830273d12c773c6371f3ac40b8f440fbeb4f4b6
d9fc6571f30c6015dadeccfa9f14ca38b643645b5560bfab7877212aa603a688
GET /gtag/js?id=G-YT5V9MV99B&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 11:48:08 GMT
expires: Tue, 05 Dec 2023 11:48:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93511
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff
200 OK 68 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type Web Open Font Format, TrueType, length 68496, version 1.0\012- data
Hash 516136f7d9610c2f842b5d8179386b95
b6ddc47558c96e9c29e14cb708668dbf4fe65a74
97ad2ddb8514fa6b4ea2ca959b701a04b635309c7a9acd3f44af653505ae9e0b
GET /cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: binary/octet-stream
content-length: 68496
x-amz-id-2: N4XGPBqfz7yE3E4+LLq+drUixgpN+jofDyEcnK+nbXGZ5a3X+7wJnQa4VBxjmnkwbG9aE9e8Zl4=
x-amz-request-id: E1Y9PF867QZ5N66Y
last-modified: Tue, 12 Apr 2022 09:16:26 GMT
etag: "516136f7d9610c2f842b5d8179386b95"
x-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:516136f7d9610c2f842b5d8179386b95/mode:33188/mtime:1649754958/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: HIT
age: 938908
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WpFfR9J1NhnRHfBkVzeLtpjeVa9dAxavi61bh4xQ7uU2lEG9ywZMFnx4MZQRT66gWU%2Bv1xpjeCAgBhcdiY6X1yMKlqlTfPzBNLxIEawW7A%2FtbH6isrTuLZ%2FJdAspYAG%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef3af3856ba-OSL
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png
200 OK 1.3 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type PNG image data, 180 x 180, 4-bit colormap, non-interlaced\012- data
Hash 2b94f103e59cc8b28383a18f90e64d91
434775c98e99bb7f923650296307178aec8d4537
f736949312f88b56c251cf403b7109652b3645d9607a7cd8257f815993b3ad24
GET /cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: image/png
content-length: 1264
x-amz-id-2: p1tOiPgrP9NilKG/KkKr5poqLDwYSAyo3gfVER9Wm3Qv7cnB29kGs65nwhGZ8UNLceEyMwZD4ZM=
x-amz-request-id: 4SG0Z9177VPVX239
last-modified: Tue, 12 Apr 2022 09:16:24 GMT
etag: "2b94f103e59cc8b28383a18f90e64d91"
x-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:2b94f103e59cc8b28383a18f90e64d91/mode:33188/mtime:1649754958/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png
x-servant: i-0ac88be10a6549c75
cf-cache-status: HIT
age: 445779
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rde3Oe7gwZnGrXqbmIAerpuBi4SlVFvH6YoImjEH2RQfPg1VW%2B4C6nsIP35Dyqp%2F1n3bt3efwEHEnJ346B%2Fu%2B4kWNzWklKt1q9UiW8rmxPmIPRbmn9e3ptTvcCgRG2qE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef41f8c56ba-OSL
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png
200 OK 454 B URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash a4891a3cd64fd2f33c5b45a07afa251e
d0c8f87cdf633d4e3a757d6cb8795c314de6f1e9
d1473bbb266448ff0741e19108bf0ae1d4bd773eab35634127e5820e3c8f91f2
GET /cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: image/png
content-length: 454
x-amz-id-2: I1d+ltibszlPc6iMTRwxwlD7qBlDRoDyq3eoOvD5tGQmp0JiunC/zeHJlDhoKWBfOcb9czOP5Gs=
x-amz-request-id: SNK3EMPH4ZP4VXZH
last-modified: Tue, 12 Apr 2022 09:16:24 GMT
etag: "a4891a3cd64fd2f33c5b45a07afa251e"
x-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:a4891a3cd64fd2f33c5b45a07afa251e/mode:33188/mtime:1649754958/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png
x-servant: i-0ac88be10a6549c75
cf-cache-status: HIT
age: 871020
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcz7%2Fb6f2bvvid%2By89CWCd41fMhJfmahk4BiXlvxyG7VTLXY36lYZBySOF5uyGj77UcbEZImTHK7Pyp6Knj3%2F7mOKaFaEXUFNULir%2FPf78tQagMRzFNL%2Fjpjiy8FA0Sj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef41f8d56ba-OSL
alt-svc: h3=":443"; ma=86400
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5EE52G3WCQ&cid=982842145.1701776894>m=45je3bt0v871839712z8835681296&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=232545768
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5EE52G3WCQ&cid=982842145.1701776894>m=45je3bt0v871839712z8835681296&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=232545768
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5EE52G3WCQ&cid=982842145.1701776894>m=45je3bt0v871839712z8835681296&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=232545768 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 05 Dec 2023 11:48:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
edo.vchasno.ua/internal-api/flags
200 OK 160 kB URL GET HTTP/3 edo.vchasno.ua/internal-api/flags
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type JSON data\012- , ASCII text, with very long lines (698), with no line terminators
Size 160 kB (160197 bytes)
Hash 1de04d2dcec9d1123c3a28676ff7cb26
7b8b459ce13d4fb8b45ecd0bef01e67186f2de17
f0f16d028a1fabaf423f2e7f5f52d056f657fea02e08cec8ea4b06add876af25
GET /internal-api/flags HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://edo.vchasno.ua/auth/login
X-XSRF-Token: vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b
DNT: 1
Connection: keep-alive
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:08 GMT
content-type: application/json; charset=utf-8
x-frame-options: DENY
x-content-type-options: nosniff
feature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *
x-request-id: 25d01ef9-0948-4ca7-9e90-a4f1ced00842
set-cookie: xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; Path=/; Secure
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w9deg5KaS5OuYeHYnS1XLQ%2BepEJJZy3OBAyxAcPNiYg6a2KMGWDdkdKIfpqSZRQE%2B4CcLa8ba21wz4etGAvBxD3cb6S5kwr%2BWXGJyaVED4LGlIxmgeN4iLSiF%2Fof9wg2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef3cf5c56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png
200 OK 744 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type PNG image data, 820 x 816, 8-bit/color RGBA, non-interlaced\012- data
Size 744 kB (743846 bytes)
Hash 358f257f21d6b4b005f7acb6a9413409
f0a4a47fa1a8cd7e723e22d02ce934f5002cb6f4
0437478dd3276b845712bfa726c41d65c096d5e2bf7cf4e18d013f22b348711d
GET /cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:09 GMT
content-type: image/png
content-length: 743846
x-amz-id-2: oPHw+UH4doATrjahOSG733x1Hv7tZ1WaGmA2xkJYjQypBVtGey6eVHmOlYMuHQUgCg+1jr2lKrY=
x-amz-request-id: JJQKWZ9JGKTXGJXK
last-modified: Thu, 02 Nov 2023 15:35:08 GMT
etag: "358f257f21d6b4b005f7acb6a9413409"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:358f257f21d6b4b005f7acb6a9413409/mode:33188/mtime:1698939258/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: HIT
age: 59985
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=618f%2B1k2%2Be%2FEfE34TY5QSwCg1r27zjGv3dlVs3daXT5zm7FIvgDIGr7bMhbq7OZGQMI6vt5yHnR4QIgAPI9wGgXsU%2FLXcN%2BGixAn5OcDN3zdtlp6h5MWo16bnD4U9bc0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef4c81256ba-OSL
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css
200 OK 120 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type ASCII text, with very long lines (29558)
Size 120 kB (119654 bytes)
Hash bc437fb418b15d7f760bda1c719e8c6a
62e59f2e2b9f8e9f7fd5f653c172184461369849
052a8272002a6ab52ef99cd30687e6b958f37126448170e0160d8525ac746446
GET /cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:07 GMT
content-type: text/css
x-amz-id-2: JtVh4qIOJ3NUuwHZBn5dDFLo8yTf9FQdRxlwjxgphKEwnoJWJDFEKLo9y7HqGlO0kHMgOfC0aEw=
x-amz-request-id: SEM6CNYPGN7HD7GZ
last-modified: Mon, 20 Nov 2023 17:05:22 GMT
etag: W/"308e7c88c38bf3a29b88e847bf1f5559"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1700499882/ctime:1700499893/gid:0/gname:root/md5:308e7c88c38bf3a29b88e847bf1f5559/mode:33188/mtime:1700499882/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: HIT
age: 962857
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X6G2F9fvWmxlBtwpvfArZj%2FYDOQkCcUISaiQpfK8KTtc5dcspccaMXSgbfWv3UXuyOaTYjQwTdefXO9GTJ1Nuf2kTxv1XWP%2BeKCVMTBOS269u2Yb3w%2FhI%2FFqxeXpTI9t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0eeb3e3256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff
200 OK 70 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type Web Open Font Format, TrueType, length 70548, version 1.0\012- data
Hash 157ee54b8c83d790e77381d46d112b5b
ebae5e958975136738d85e9223b296dfb3956b34
725e396d8334647bfddcc6e889307241ec5179321633431cf37c3e019eaea28d
GET /cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:09 GMT
content-type: binary/octet-stream
content-length: 70548
x-amz-id-2: Po8XkJ2Fc8pSvngGWvBPZQUob1/EGxCq1SUJgbXr2FI0LcDhflzsOOIvGAJzQCulXBaBsQ40CKg=
x-amz-request-id: CY84CR0V6K36HQY9
last-modified: Tue, 12 Apr 2022 09:16:26 GMT
etag: "157ee54b8c83d790e77381d46d112b5b"
x-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:157ee54b8c83d790e77381d46d112b5b/mode:33188/mtime:1649754958/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff
x-servant: i-0ac88be10a6549c75
cf-cache-status: HIT
age: 141752
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Vowy%2F1lvlm7EnPaj8v4j19aiOrCjR7Q00JLo%2FoXHluf4ZCQ4PGJqtu%2BUvL%2F85oqXkP8NoUzpQ36mfCVqsSFI6axr0vQ18qN2gcJ%2FaQA0iXxCOtclcpXTBJ3cFdWxwRa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef4e83256ba-OSL
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png
200 OK 160 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type PNG image data, 350 x 310, 8-bit/color RGBA, non-interlaced\012- data
Size 160 kB (159890 bytes)
Hash e473201f81a41f01235cb2eaa43f75bf
5ef673e3d5980fd525b736f50ec36f3ac4e1b3a9
7d5bf1a6216bcc7ecf9f00615eb629370d97c8109f1fe01ab389b7ecb07794b4
GET /cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/check-email
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:09 GMT
content-type: image/png
content-length: 159890
x-amz-id-2: A5daB6VYLhDwn84VBLzOU+rAi9BQam7Y4sBCvAZzdEn8TsRQmRYI694j8SvXMW/Znq4qNQ3XTFc=
x-amz-request-id: 0CSWW1J52V1QMHN7
last-modified: Thu, 02 Nov 2023 15:35:08 GMT
etag: "e473201f81a41f01235cb2eaa43f75bf"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:e473201f81a41f01235cb2eaa43f75bf/mode:33188/mtime:1698939258/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png
x-servant: i-0ac88be10a6549c75
cf-cache-status: HIT
age: 1049237
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3WicXXAQh4reWqsGlWFzCOP7CzdhKE%2FpxcZBnCFI6qILo3mXoG8jTATHWIzDuWAEcZOeUGar3UoY%2BcjNtg7RQuyHp0kKo02rLw3Mpr%2FOjkiUYYyz7yZy4LZJLor4uMr4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef5a8da56ba-OSL
alt-svc: h3=":443"; ma=86400
region1.analytics.google.com/g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712z8835681296&_p=1701776893456&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_s=1&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&en=page_view&_fv=1&_ss=1&tfd=1664
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712z8835681296&_p=1701776893456&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_s=1&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&en=page_view&_fv=1&_ss=1&tfd=1664
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712z8835681296&_p=1701776893456&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_s=1&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&en=page_view&_fv=1&_ss=1&tfd=1664 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edo.vchasno.ua
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://edo.vchasno.ua
date: Tue, 05 Dec 2023 11:48:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94Yt3CwM.ttf
200 OK 36 kB URL GET HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94Yt3CwM.ttf
IP
Requested by https://accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 9b3ee9d428af1431ba2eb09c27fbf645
1487cd9cf3b19411b97c634e8f52c696383625c5
cf14fae5e96ebf9d3e74ddc99d05745c72ffb71ba0d9427ed4d3acb4be658faf
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94Yt3CwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 19:09:13 GMT
expires: Tue, 03 Dec 2024 19:09:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:43:09 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 59936
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Kwps.ttf
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Kwps.ttf
IP
Requested by https://accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 0d2de1ae7d1d5e4a9d5c9caeaa873056
ad947e526f74ed6d7fc4b20c7abf1915274957fc
38f6f3827e99590a5a1924d223b78cbbd6db8bc38d509661ae7a1c78a94b32bc
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Kwps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35252
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:22:01 GMT
expires: Fri, 29 Nov 2024 23:22:01 GMT
cache-control: public, max-age=31536000
age: 390368
last-modified: Mon, 22 Apr 2019 23:42:59 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712&_p=1701776893456&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_eu=AEA&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&_s=2&tfd=6752
204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712&_p=1701776893456&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_eu=AEA&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&_s=2&tfd=6752
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5EE52G3WCQ>m=45je3bt0v871839712&_p=1701776893456&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=982842145.1701776894&ul=en-us&sr=1280x1024&_eu=AEA&sid=1701776894&sct=1&seg=0&dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin&dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua&_s=2&tfd=6752 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 313
Origin: https://edo.vchasno.ua
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://edo.vchasno.ua
date: Tue, 05 Dec 2023 11:48:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 05 Dec 2023 11:48:19 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+222; expires=Thu, 04-Dec-2025 11:48:19 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 11:48:19 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 451
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 05 Dec 2023 11:48:19 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+289; expires=Thu, 04-Dec-2025 11:48:19 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 05 Dec 2023 11:48:19 GMT
X-Firefox-Spdy: h2
edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js
200 OK 4.1 MB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
Size 4.1 MB (4074076 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:07 GMT
content-type: application/javascript
x-amz-id-2: 0RHgX3Lnv9fV6Gn0hACznjeuOsKv1AACjikODfOuEr1Ysw8ILksuVE7zaeJ4mbKntviaxrBThxM=
x-amz-request-id: P2MSBATS004X8WB8
last-modified: Tue, 05 Dec 2023 11:40:52 GMT
etag: W/"0e5e192aa79ae9a0befe6a66900f8657"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1701776410/ctime:1701776411/gid:0/gname:root/md5:0e5e192aa79ae9a0befe6a66900f8657/mode:33188/mtime:1701776410/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cy0gpRV2b0oBHwXlP4pkInzBaqkxGNy61Tck9BGq3nbuAoRsVsRPqiX%2FKYt4LDL9VjuflgZBlgP00HDbaSEt5aA9TbMgkRHb2Y47ymc3ioDORT60joHNHPLdlUIsp%2BRA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0eeb3e3c56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff
200 OK 95 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type Web Open Font Format, TrueType, length 94800, version 2.137\012- data
Hash 3441f191799efbde825e0f8dba3355c8
f5e571d3e5a1fee3083e77fd94dc4d670f46850d
70a6610b1ace14a1a128da9f7dd1d77bbfaaace7e99fa98e42a26a618d0106ce
GET /cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:09 GMT
content-type: binary/octet-stream
content-length: 94800
x-amz-id-2: kMUMmzXVHGFf5+qtzBIbgurj4bYS0PoI1WnY7Zk3cDdUk6RXt+Pgnu+7POEQnoDakBZkcBfN8vU=
x-amz-request-id: E379E4VWQV7FT8G8
last-modified: Thu, 29 Sep 2022 20:33:44 GMT
etag: "3441f191799efbde825e0f8dba3355c8"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1664483606/ctime:1664483606/gid:0/gname:root/md5:3441f191799efbde825e0f8dba3355c8/mode:33188/mtime:1664483606/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff
x-servant: i-0ac88be10a6549c75
cf-cache-status: HIT
age: 869871
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OPRxl2snZ9YYEWoi7OuOm%2FQDz2PooYq1IOVmY8dMO%2FdpbkwHCQymQTJrR9PSCl02JKGY66aZXW0f5p0CFAsaf%2FovnkdEWehjF9UMNtu3pOaif1ZdEIQgAf3qAkUfwsbR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef4c81556ba-OSL
alt-svc: h3=":443"; ma=86400
edo.vchasno.ua/auth/login
200 OK 7.9 kB URL User Request GET HTTP/2 edo.vchasno.ua/auth/login
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7997), with no line terminators
Hash 0e0fbe87c2441a08f52e8e44267d8652
8e71443ecc4ed87ad63638a525e4d9213f2c834b
75399459ec1fd5db4540ee9542418db9989310ca7fef4157a873a64ac6ecd1cb
GET /auth/login HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 11:48:07 GMT
content-type: text/html
cache-control: no-cache, no-store, must-revalidate
x-frame-options: DENY
x-content-type-options: nosniff
feature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *
x-request-id: e0b3ae31-8215-4fb1-8d61-1b79fe1a5d52
set-cookie: static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; Path=/
xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; Path=/; Secure
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2BTF2vFjnHvjxjSErqFrBC3SShJcrxhwoGHTAfvKJZaI%2B8%2F8HJfSoke3WkFXu8HafPxzAjgTA5xs6LtSzrY6f6re969QsepnU6ImDVeAQNsKVE8nSwUVD2nMgcPd37RA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ee83fdab529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
200 OK 210 kB URL GET HTTP/2 accounts.google.com/gsi/client
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintF3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8
ValidityMon, 20 Nov 2023 08:09:49 GMT - Mon, 12 Feb 2024 08:09:48 GMT
File type ASCII text, with very long lines (3006)
Size 210 kB (209992 bytes)
Hash 2dac4c28fbe1c91c8c9238396e8783db
cd248444b9109bd11fbcdc9346187b11f5aaba88
0401b1138e2dbac185c52dedb3b6804474a6b2ffc5486e68a3fa861e9dd275f1
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Tue, 05 Dec 2023 11:48:07 GMT
date: Tue, 05 Dec 2023 11:48:07 GMT
cache-control: private, max-age=1800
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-m9IXiFgemvk7A5BHlCWhAg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
edo.vchasno.ua/cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png
200 OK 160 kB URL GET HTTP/3 edo.vchasno.ua/cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subjectvchasno.ua
FingerprintE1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E
ValidityTue, 31 Oct 2023 18:01:28 GMT - Mon, 29 Jan 2024 18:01:27 GMT
File type PNG image data, 350 x 310, 8-bit/color RGBA, non-interlaced\012- data
Size 160 kB (159890 bytes)
Hash e473201f81a41f01235cb2eaa43f75bf
5ef673e3d5980fd525b736f50ec36f3ac4e1b3a9
7d5bf1a6216bcc7ecf9f00615eb629370d97c8109f1fe01ab389b7ecb07794b4
GET /cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png HTTP/1.1
Host: edo.vchasno.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/auth/login
Cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash="059fc00eb80c26532d17e0e19486dd6d84add384 -"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 11:48:09 GMT
content-type: image/png
content-length: 159890
x-amz-id-2: R+8knEmcxTGJJwyzc+0SGEaJHpznn7L7OX76K5nYC2sACp8OzN1wYIQ35y1UV4GU4kkBJCgwohE=
x-amz-request-id: T36H0F0T3M82Y24T
last-modified: Wed, 22 Nov 2023 09:54:48 GMT
etag: "e473201f81a41f01235cb2eaa43f75bf"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:e473201f81a41f01235cb2eaa43f75bf/mode:33188/mtime:1698939258/uid:0/uname:root
cache-control: public, max-age=31536000, immutable
vary: Accept-Encoding
x-cache-status: HIT
x-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png
x-servant: i-0620f5cb1b5f4b5d0
cf-cache-status: HIT
age: 703312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8tQoDBmJ2mlB6LfafrSV4uqCLFFsxhYZXJLb6AJnBERf9RJnvK49b4l500gosU%2FdsH1O6NDe2L8F2zLesn32ycWmCSGgfMUPUDFS8hNuaMb62iuG4adbO9x6DrKDj6V3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c0ef48fdd56ba-OSL
alt-svc: h3=":443"; ma=86400
accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
200 OK 116 kB URL GET HTTP/3 accounts.google.com/gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7754)
Size 116 kB (116497 bytes)
Hash bd7bff809b9bfcad7f4541147a2f76a1
c7e2b83c91801a9293cbd96ff384f7b54311a1b5
c9d950da4ecb1426756b0bb430c57a36b2ee97101d370937c1284203187dd8b5
GET /gsi/button?theme=outline&size=large&type=standard&shape=undefined&width=195&client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com&iframe_id=gsi_895017_970699&as=nZ143NBmBvhWSE1b7%2Bfq7A&hl=uk HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 11:48:09 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-igfwOycJgUWYRYJ1jiizCw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
accounts.google.com/gsi/style
200 OK 530 B URL GET HTTP/3 accounts.google.com/gsi/style
IP
Requested by https://edo.vchasno.ua/auth/login
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89
ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT
File type ASCII text, with very long lines (530), with no line terminators
Hash 6ce3c682ce6b9e0b88670395a63345c8
8cbfc0856a52320e3567792dfe2487748ac07458
524f1ea2ac242c6fae3c1cc52c7ae7d05a8a7db466fe3c7b46e8efcfc2d95e53
GET /gsi/style HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://edo.vchasno.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
expires: Tue, 05 Dec 2023 11:48:09 GMT
date: Tue, 05 Dec 2023 11:48:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-J_k-5crgfMdZS4uR98A_mg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
104.26.10.78
188.114.97.1
193.34.169.9
0.0.0.0