Report - davalka.click

Report Overview

Submitted URL
davalka.click
IP
109.206.176.250
ASN
#50245 Serverel Inc.
Submitted
2024-05-04 21:54:33
Access
public
Website Title
Давалки - Порно видео, Смотреть онлайн секс на мобильном
Final URL
davalka.click/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
24support.cc	539228	2020-02-26	2020-02-27	2023-07-08	424 B	20 kB	109.206.163.225
stats.24support.cc	581830	unknown	2020-07-05	2023-02-10	529 B	313 B	193.42.110.203
fp.metricswpsh.com	unknown	2021-10-29	2022-04-22	2024-05-04	1.0 kB	812 B	157.90.84.242
3fb4026cec.ffbd26c481.com	unknown	unknown	No data	No data	823 B	320 B	45.133.44.53
awpya.com	unknown	2022-04-21	2022-04-21	2024-02-27	6.0 kB	949 B	168.119.25.102
nereserv.com	40015	2020-12-21	2020-12-21	2024-05-03	591 B	320 B	168.119.25.102
storage.multstorage.com	unknown	2023-09-22	2023-09-22	2024-05-03	525 B	1.6 kB	104.21.30.242
js.wpadmngr.com	25762	2021-06-02	2021-06-02	2024-05-01	818 B	111 kB	45.133.44.52
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	454 B	3.4 kB	142.250.74.106
js.capndr.com	316718	2021-08-30	2021-08-30	2024-05-02	400 B	374 B	45.133.44.53
na.nawpush.com	38563	2020-12-21	2020-12-23	2024-05-01	440 B	1.7 kB	45.133.44.25
js.wpushsdk.com	36947	2021-05-07	2021-05-07	2024-05-04	819 B	520 kB	45.133.44.52
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.0 kB	75 kB	216.58.207.227
accounts.google.com	81	1997-09-15	2016-03-20	2024-05-03	1.7 kB	5.3 kB	173.194.221.84
img.24fastload.net	unknown	2023-10-03	2023-10-03	2024-04-16	21 kB	1.2 MB	104.26.10.131
static.bookmsg.com	47495	2020-09-15	2020-11-24	2024-05-03	2.2 kB	4.4 kB	45.133.44.25
davalka.click	unknown	unknown	No data	No data	8.4 kB	466 kB	109.206.176.250

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	ffbd26c481.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash a8310ebc4934219878208fb0a94b783b 79248bcf07b38ed96d3a0070945aa425ebe3a00f 51e539ae6fa0387bc2317a9642d6a4412e7bad0e2f351bf09cadb6904f3c2cc6 Loading...

	js.wpadmngr.com/static/adManager.js	1.7 kB	2024-04-09	2024-05-18
Pretty URL js.wpadmngr.com/static/adManager.js IP 45.133.44.52 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-09 16:57:02 Last Seen2024-05-18 14:22:13 Times Seen207 Hash 1e936cad37e18ba5bc2f07acd57447d6 f55969248208bb6871e28b9478761ffb25207c35 e98e6a93ea15df4d4fe1e38c890f29512d739f493428436defb914775df550f8 Loading...

	js.wpushsdk.com/npc/sdk/wpu/ipnpush.m.js	168 kB	2024-04-27	2024-05-13
Pretty URL js.wpushsdk.com/npc/sdk/wpu/ipnpush.m.js IP 45.133.44.52 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 09:40:27 Last Seen2024-05-13 09:50:11 Times Seen47 Hash cf49249e73efabedaf345f1fc2937285 5ef768ef2b81110762fcf31b5846daf3b56ab70c 75791ea71263cfaa3d74ece2b2a552c503ab39091bdcaccfda2d6f69fe77a7b9 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash cdc562d5319589c347c1a4762a435725 964ecf809bd7705e64b0b72e7358054678f310bb c461ba8faa11f12ca01d38e1b5db4d9a64c786cda42daf383a5ea3ce1c2d2075 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 2b83ee21bd3eb9ef776ff9950b2bb6c6 c58c66d568008962b657dc04f06de202bdb1d7e1 663226cd1b2e56daa8beb87f4d0903fda11be1a1b445b5d48f0c07a7806e579a Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 09231adde5d23372b85e372756d14f93 c2a0e56a4b45f1bc9837fc82d9e458831d225e9c f26c853c666b8a961fcfbdc71975cf0faaa180e2fa22c0c24fbdf276c8b43122 Loading...

	unknown	173 B	2023-04-13	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 07:07:54 Last Seen2024-05-04 23:54:41 Times Seen14 Hash 0bd48eef90fa68b4b9c2bebc929b5e63 e636308b4df40ef9aa391c9cdb4fdb73358066fe c10c35f14cd08c18432e09609e93dcfb6b1d5f12c686507139a74cae96544bdf Loading...

	js.wpadmngr.com/static/adManager.m.js	109 kB	2024-04-24	2024-05-07
Pretty URL js.wpadmngr.com/static/adManager.m.js IP 45.133.44.52 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:00:34 Last Seen2024-05-07 11:41:50 Times Seen663 Hash 41230c1446cb19310867b6c3e10f8bec f600745dccd0143bbd1d83d44bd776c74f69866b 713bc0015ac5ef37f48ad9f49aa4521912b705cf01bf19409f98235b28d41dfe Loading...

	storage.multstorage.com/log/count.html	718 B	2023-09-18	2024-05-18
Pretty URL storage.multstorage.com/log/count.html IP 104.21.30.242 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-18 17:19:52 Last Seen2024-05-18 14:39:31 Times Seen5425 Hash 1f697a0f2411e463adbc1211493fe5a6 93c154152bda427938543b8efbd8d3b594abbac7 08a5735f5232b651af89f552e8d0fb7b21d6605fba48f335318699d80d12703e Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash c049bdd024a205c39a006e9cbc228ffa 6d457691669c3b73ff27ecde3014c0a4c11e4636 f857e2eb9ccda8b02be366961c7e3fb351009b89131744f36171f0116cbd2280 Loading...

	unknown	1.9 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 53dbe50de4a37cc292ed2ac41f5f682b b475ca51c9a088e1d447ca7cbdd61f1e3193d265 5b3d1a18c486b6740791b30589d4ee8fde0b63017a60ecf88de25a01154dd167 Loading...

	davalka.click/	42 B	2023-03-09	2024-05-04
Pretty URL davalka.click/ IP 109.206.176.250 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 21:43:05 Last Seen2024-05-04 23:54:41 Times Seen24 Hash 75f9d60ba820e99f32fdc271e48ea3fb 6bcafc8c1b77a681d17584a265ea674aaaf4ac45 da04b80bdb30d27f9ac721e177fa1dc481a765f6e0b58b637f0b5199d2070e45 Loading...

	davalka.click/	917 B	2023-03-09	2024-05-04
Pretty URL davalka.click/ IP 109.206.176.250 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 21:43:05 Last Seen2024-05-04 23:54:41 Times Seen17 Hash aa4d426b3f1b2a234b9f534f6db708c6 c65bd73f226b1c8d29f814f46723b67f7d325f85 1d09c3836ab570d0ccd2ebe3a8b50026a54e52c324076de71f59583ec2713ce2 Loading...

	unknown	2.4 kB	2024-04-03	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-04-03 10:08:56 Last Seen2024-05-04 23:54:41 Times Seen2 Hash 78433303ffd498d07b1a198d7d12acf1 732397b287ce13d077e838f90d74e05d853e6f90 2acb627f04b01e4bc15e5478af07560a546747dce4638b5abb7ffa09307bd0dc Loading...

	unknown	18 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 9aa3ebc7cbc0ea9315509cad050054af 78a8e4e4d6bdd1194a3c7d421d980debf057d952 c2a6306f19814170dd3494262e9e0f4a41e647108293acc674e03923d5f4d6a2 Loading...

	davalka.click/static/js/main.js?v=1	239 kB	2023-03-09	2024-05-04
Pretty URL davalka.click/static/js/main.js?v=1 IP 109.206.176.250 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:43:05 Last Seen2024-05-04 23:54:41 Times Seen17 Hash 7f710cfbc7b361d7e7bd6ea03391d304 80d2f7dde39ec73600585f68bd08f751334aba07 c3b07ab4048e9e434692ee74e1ec666070375be1e00d8953cb16844c46c5d5c5 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 44e1aeb623a71bfc47f7fac16340c188 00451afa9398718d13190912a6c78b917e74cc4d 46d8409f3b793be227d2df40b403ac779709a31d41b4edaacbbf48259afbf3ef Loading...

	unknown	1.7 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 8d45fd4a7aeba3d11c0fa03a03f895e4 36240327e5beedc5f9b0936b79d2a6ae7992885f 36c7930c41a909bdb9195c12ef46bd9d65ebd2b35320dfd2142e07a82f2bcb77 Loading...

	unknown	350 B	2023-04-13	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 07:07:54 Last Seen2024-05-04 23:54:41 Times Seen5 Hash 59c266d05ea6151ca3ec9fc7094d8504 edbcb3cdbb35c5a02254817b1c344a4e297ef042 57929613e7a749f1745e32c259ca94efe68ba55a2684032a4ba3d2225dbb5c1f Loading...

	js.wpushsdk.com/skins/ipmain.m.js	470 kB	2024-04-19	2024-05-12
Pretty URL js.wpushsdk.com/skins/ipmain.m.js IP 45.133.44.52 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-19 15:52:52 Last Seen2024-05-12 12:48:12 Times Seen46 Hash cacb84104ff1b8352e0ee8c801a29ef4 393c74e933ff2a417ca50df17347793a36c86055 0099579c122343453ad3823291a11281d87678f071717020be17fec25ff03b77 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash d7d552bb8bd97c167c0e348f56aabcad 3a237043741bd24044daa68988f38a9dd620b0d0 084ac875b455705784c7269514da7d23f16cc2656713f8e306eb03337d17d0ba Loading...

	unknown	1.9 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash 039332fc8d9a70e56616b1ac7781365a c18e9ac73565c05867d596a6cfcb26549ba417c4 b6638bf3124ed9b8ee9c4811b307eaa083df4fe53f55ab0be2e5b47e30d82fbd Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:41 Times Seen1 Hash a021258bf6c2c0313d6f1ddf084db8a3 197d053b512689c45a53658ed25a395bc1752e51 cf7057f5e9f3f8e3ae586e3dbf2119b7698abb5d3fa755c6328b9a99c889a0f6 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:41 Last Seen2024-05-04 23:54:42 Times Seen1 Hash edfcf7be3e1c6aba239f1b80e9f3ef80 8c3d89ad52e0e0e9b1c3a72891bb6e4204baee5d 0bce20d7f4c003b31082685e36ccc496de663af111cbabf29b781f1c71dbc0cd Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 4564a14d5183591475508ae3030692e8 4854a6592552ac021c721368931c0e0553685759 ae5c3670df0bc9e4b9fcd9459921cbb1266904f50b90cae87e02153e2917043f Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 4830b39e005cc2de71770bbe4c37650f 528b90a2d38846e9f6d60d42a12b8fb897342a66 a86ca59031fa476b21c7e979422997ebabc2e8deed52dbc4f7874fac117267c5 Loading...

	unknown	1.7 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 0dcd9ca1a57bc6faf23b9a777f98bdac 388e25e9eb7053dde7de8c177ad685edf485d18a d1eadbb4a32d8a25062d85c08d5d90ace4f73490c99a2eee72fac718e8f4d1cf Loading...

	unknown	26 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 9ed33ae658b822c76f2226fd819163fc 8c5a808b5fa24408e1d9b76641645f2c6ba119d3 e8710127dc0efbacfffe2b6ee4cd40c87390f63cf131a48fa0bd95c9869d6afd Loading...

	unknown	1.7 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 00617c32355fee9eb91694a82797ae72 5786c629fab3487a5023725a279a16a93657ecb0 72a2d26cf11913711544e0ee945d9d4ac5a82118608ae1e64340f4a53c01ef7c Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 0b7486c2c96bb15bc992e99bacd009a8 05759e022f437aafef56f549f222801d8bb7cd6e 467881a186b8b43c722ef8b7ac75df484873674a2e84ffcaa7dc48420a1825f7 Loading...

	24support.cc/js/stats.js	51 kB	2023-03-09	2024-05-04
Pretty URL 24support.cc/js/stats.js IP 109.206.163.225 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:43:05 Last Seen2024-05-04 23:54:42 Times Seen46 Hash ae3b372447a5fa28137e03c1004c6125 2bc64c2c98a85354366ba7db60120a64f3b42d62 6555c1477ac7c9bc88d84f6825dfc897d1e9fb362f43a5a0d04324172dd172c6 Loading...

	js.capndr.com/advertising.js	0 B	2023-03-07	2024-05-18
Pretty URL js.capndr.com/advertising.js IP 45.133.44.53 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 15:11:32 Times Seen37788240 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	362 B	2023-04-13	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 07:07:54 Last Seen2024-05-04 23:54:42 Times Seen5 Hash c82c80dc42235fd124bcac035c3a8fa3 4789c9472dab3ce910840257652116cff5dc84f1 5ae99d01d69077f67f580bbf5507f2813b5c9ff8b5d3bac3af3c645400cf6b03 Loading...

	unknown	1.7 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 06b421da530c3a498df685c099a9baa6 5a7c9e4ea3d6f2b68c30db289fe62135db0aac08 be12206a23c195b77a5a69b95a6674711e8383fc2ee42cfda78fef2c25fa8dc9 Loading...

	unknown	1.7 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 4770468065ad3494ed30ab6a37b5e96c bed92d4c7cf3317ca3bc4064076000009de1080b f4afb6dc9dfb0a36c4447420dc2195d449d1cebc64c9d38f0689fca7a139288d Loading...

	unknown	1.4 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash c22a414126e3d8e3733f1b4bba295745 4bb437326e020d69f8575fed7ec4605eb69299f7 205e13e25e3ceeb866e90b38bec12ae588858058c529ddfcc9ded2cf55475c12 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 60b45d0f87ee019f2525a2421bf5bd7e 743835da98e9002cb262d41a2fbdf9836b90f7d6 2251e6402bd2c447d480e9c2c642cefd264bbe0b44488c81d23bfaadd0841ec7 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 3d8a3728315e64deaff7a9c7627419ca 42f18e706fe731c184e1c94e9dfbe57dcb12f1a5 8e84f20806e62ca9d629e2b7bea8ca6ac5f2d4844240d9a6e109b81fde6c6c64 Loading...

	davalka.click/	0 B	2023-03-07	2024-05-18
Pretty URL davalka.click/ IP 109.206.176.250 ASN #50245 Serverel Inc. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 15:11:32 Times Seen37788240 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 510a4e954d604d7e0f0af935498be05b b1e407a915e7e992969b93117f09a77d24506213 57d968dc31aa0ecfdf51e88bdd1955747a1fc720e1a35a6bd0990589a08c6ebf Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash 666edca02c1a58dc5b515d16f9681962 cb86c4fbf83cc4c856f1d4b7b7c549ae5fc7b6d5 0120e8359d7870c935de97b6323e84ae7c972fef6b180e8676bf7e208fb77781 Loading...

	unknown	1.8 kB	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:54:42 Last Seen2024-05-04 23:54:42 Times Seen1 Hash d47b6073cffeb771a36cd772b058d163 e8c3ff95074e2a6b893e21f85c7a5bd8b8ca4909 6b5c6971bb4b8e08128baa3560f5ab4667a7af4256b98033e13b9792a245d8ec Loading...

HTTP Transactions (91)

URL IP Response Size

davalka.click/static/img/icons/i-close-blue.svg

109.206.176.250

200 OK

818 B

URL GET HTTP/2
davalka.click/static/img/icons/i-close-blue.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
818 B (818 bytes)
Hash
88203f14477bef44be656fff83c1efc4
764379e4a9fe46b6b1d581b5b927fc3854865b29
a82dcca19312a2311f1b9087cb7674a347a9ffe983f795051f5a168e43a1eb63

HTTP Headers

GET /static/img/icons/i-close-blue.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 818
last-modified: Tue, 13 Jul 2021 07:15:09 GMT
etag: "60ed3d7d-332"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-search.svg

109.206.176.250

200 OK

877 B

URL GET HTTP/2
davalka.click/static/img/icons/i-search.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
877 B (877 bytes)
Hash
6cbeaa052276a66c73ca79899191d70d
d1cf863d91fc5610ac6c504edb7c8b33a2c4b0ad
e1e26725b547aff94a1c4841cd3cfb02c4db1e576a052a338dd93a5c4927ea79

HTTP Headers

GET /static/img/icons/i-search.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 877
last-modified: Tue, 13 Jul 2021 07:15:07 GMT
etag: "60ed3d7b-36d"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-menu.svg

109.206.176.250

200 OK

620 B

URL GET HTTP/2
davalka.click/static/img/icons/i-menu.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
620 B (620 bytes)
Hash
f09c03e99840c2c4affd392a09853793
15126007249a7d276e8dac8550b575bc83a4c1dd
b37c2780cd9ffc35c92af66666d5c1c722bbd6934adcdc0dadfbee0ee1016ee5

HTTP Headers

GET /static/img/icons/i-menu.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 620
last-modified: Tue, 13 Jul 2021 07:15:08 GMT
etag: "60ed3d7c-26c"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-close-gray.svg

109.206.176.250

200 OK

818 B

URL GET HTTP/2
davalka.click/static/img/icons/i-close-gray.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
818 B (818 bytes)
Hash
bccffe5354d12a5c5f6fd23826fe6064
c0c2813f44acbe627613cacec3940c1696c9bc43
025e9ceb86858caf8bae5de15728e9a81996b1643ce607a1f5a118b8799ee235

HTTP Headers

GET /static/img/icons/i-close-gray.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 818
last-modified: Tue, 13 Jul 2021 07:15:08 GMT
etag: "60ed3d7c-332"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/angle-right.svg

109.206.176.250

200 OK

484 B

URL GET HTTP/2
davalka.click/static/img/icons/angle-right.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
484 B (484 bytes)
Hash
5557030ea543694ad9741ee5976a8d0b
5ba85a4609f46e37d83af04e26d09864e30f30e9
e3a7f16446948cfd76cc8f347fb1f0c68fc121a30c36ae90c90c9f96da381d26

HTTP Headers

GET /static/img/icons/angle-right.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 484
last-modified: Tue, 13 Jul 2021 07:15:07 GMT
etag: "60ed3d7b-1e4"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-plus.svg

109.206.176.250

200 OK

369 B

URL GET HTTP/2
davalka.click/static/img/icons/i-plus.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
369 B (369 bytes)
Hash
1ed324f47f6f38a40eccae67f7ddfbfd
e9326ccabaa5d9109f0c504e757e468222ec7b87
cf2b17e4df3ac813dbdc7fa20b5a0aeb8ff226b997d00e58ab353a4d23fb44ca

HTTP Headers

GET /static/img/icons/i-plus.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 369
last-modified: Tue, 13 Jul 2021 07:15:06 GMT
etag: "60ed3d7a-171"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-eye.svg

109.206.176.250

200 OK

602 B

URL GET HTTP/2
davalka.click/static/img/icons/i-eye.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
602 B (602 bytes)
Hash
a366553dc1ab378b1de7b8bffb26497a
f051ab02b1ccb9659a6e32ae79e9df46fae44bf8
5011fe318fc15f2af8d4a0f8c87dd2b24feac151420f36a7b7099ce8a2fa2845

HTTP Headers

GET /static/img/icons/i-eye.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 602
last-modified: Tue, 13 Jul 2021 07:15:09 GMT
etag: "60ed3d7d-25a"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/like.svg

109.206.176.250

200 OK

4.2 kB

URL GET HTTP/2
davalka.click/static/img/icons/like.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
4.2 kB (4214 bytes)
Hash
b9411a4042adb8d4d8bc6df819c75ecd
8b98072ce4797ccb2f66ec3a0565414df6936d1c
43ad776f2238ac9024cca6da2b53085ca2424dff76f2091fa66c81ca6d9ab830

HTTP Headers

GET /static/img/icons/like.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 4214
last-modified: Tue, 13 Jul 2021 07:15:09 GMT
etag: "60ed3d7d-1076"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/i-folder.svg

109.206.176.250

200 OK

2.3 kB

URL GET HTTP/2
davalka.click/static/img/icons/i-folder.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
2.3 kB (2318 bytes)
Hash
b4528791a9bd1af4e875391d02d69ff6
43abefcbac9b7912871c7030bb3ce850f89a2cd8
cae70452ce4b1565a5259df10e914f6e3c977403ba25e0a5370b5e30436063de

HTTP Headers

GET /static/img/icons/i-folder.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 2318
last-modified: Tue, 13 Jul 2021 07:15:07 GMT
etag: "60ed3d7b-90e"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/is-hd.svg

109.206.176.250

200 OK

1.5 kB

URL GET HTTP/2
davalka.click/static/img/icons/is-hd.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
1.5 kB (1521 bytes)
Hash
448cc2c541b0cf820cdc4837190043e0
8cb30abd174ae0342fb6b85ce8d5f645fe983e7f
b830ad3d67537f8e2ac0e755198f7c1ed79eefb433ba6d60e14c288b4d84dfcf

HTTP Headers

GET /static/img/icons/is-hd.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 1521
last-modified: Tue, 13 Jul 2021 07:15:09 GMT
etag: "60ed3d7d-5f1"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/img/icons/angle-up.svg

109.206.176.250

200 OK

1.2 kB

URL GET HTTP/2
davalka.click/static/img/icons/angle-up.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1152 bytes)
Hash
0c73e4a398a40d78736b6f364c41e881
a7d3ef052545f428ddbd20e8d82166db5816fd82
2deba60f2b29a833c4889a96632d5df64eaadb71366af1076b642197e2f7784c

HTTP Headers

GET /static/img/icons/angle-up.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: image/svg+xml
content-length: 1152
last-modified: Tue, 13 Jul 2021 07:15:07 GMT
etag: "60ed3d7b-480"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

img.24fastload.net/t/000/698/301.jpg

104.26.10.131

200 OK

22 kB

URL GET HTTP/2
img.24fastload.net/t/000/698/301.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
22 kB (21712 bytes)
Hash
258e71af9932993f6c7ed977e85f835a
3760066ee11cbe076ab6a5fdcdc2f1bc569525a5
213d7c39c6b002b163c310f3381257cdc6d7c6b7ac2b0983955ea193ae500b80

HTTP Headers

GET /t/000/698/301.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21712
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22726
etag: "65c5d96e-58c6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 09 Feb 2024 07:51:10 GMT
pragma: public
cf-cache-status: HIT
age: 365147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rUyKCmoJt2G%2F86%2Brfe0PGNqDiM7oa7Q7r6QWOs2qIfNTPNfmZl46myDHxcOKlJURsVtC%2BiXXAXfPL9vp4odrIx2VnHj3%2FkLucWSGyJvOKsZOjuBfLyiJDnHki96rNHxf77Kc5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec00b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/554/798.jpg

104.26.10.131

200 OK

17 kB

URL GET HTTP/2
img.24fastload.net/t/000/554/798.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
17 kB (17311 bytes)
Hash
b55747cb9dc43113e1b70aea91f5a6c4
0581e869f8d97830458ec5ec9ff261b6e08eebd3
9fc9d3f8ea556ff3e8c4a9d646260537fd92a14d0304eb9776f07492c8ffcbcd

HTTP Headers

GET /t/000/554/798.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 17311
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=17871
etag: "631c26c1-45cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 10 Sep 2022 05:55:13 GMT
pragma: public
cf-cache-status: HIT
age: 357029
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TPgdAgx9F4vjCl5zWoaG%2F68HugrZrb0rEj%2FI6A9SPfziZxebOrmbOGFLqe1c9yG0lbQEvurmIBF6sZjiLvQ%2BLAD2JKxpZEbUfVD%2BhKLtHn%2FAhcJvPkEVmq%2Bl0iB01rk3zFTSoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec02b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/586/637.jpg

104.26.10.131

200 OK

19 kB

URL GET HTTP/2
img.24fastload.net/t/000/586/637.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
19 kB (19049 bytes)
Hash
a0c1e7d3add1b2a20b1fa260c59dbccf
1a98ab8ddcfbb75dc4378c6e916855b9653ca7e9
3509ab46ec74ca11462ab8b5745852146e45732746e4c06dc11edf016f9c9189

HTTP Headers

GET /t/000/586/637.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 19049
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19758
etag: "63bc1f10-4d2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 09 Jan 2023 14:05:04 GMT
pragma: public
cf-cache-status: HIT
age: 351168
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZEopn7T8raoXC%2FOwu16WAJehasUrQ%2FtvrzLAq7Qm1Kifu32yOGn4bAJF4HdqNNwxaP71nNMjeLIobbl%2BFB4m6XAeEWa%2FtPbizDCrda6rA6XDE6%2FVKi0CicqYMvwOdZbvQmv3Hg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec04b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/697/177.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/697/177.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21434 bytes)
Hash
0f7fbf037c5bc5ac3d88f92ce40b9d47
d3bb6d26186b102b0577d8c0fbb80962dd65c572
bf64675e505e89101463606cd050ca07c27a5fb0c93293ea78df6f17a7465086

HTTP Headers

GET /t/000/697/177.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21434
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22654
etag: "65c1dec9-587e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 06 Feb 2024 07:24:57 GMT
pragma: public
cf-cache-status: HIT
age: 350307
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iyqzTTa%2FF4vVeFXKt32jEoi4oCMM%2BJJBq3FtFvmhWJ%2Fniz8lz97lBlTRfM6D8l4SxwqeaF%2BiY9I6t1Y%2B%2B7UW6cTX0c%2BAjJ7DCVnTS8wutqyYZmByoy%2BBuW9bfe%2BMuiJVbBah4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec05b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/443/125.jpg

104.26.10.131

200 OK

25 kB

URL GET HTTP/2
img.24fastload.net/t/000/443/125.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
25 kB (25429 bytes)
Hash
bca8c608b53fbb06da0182078775fda0
07d236e1e40e0cdd874f4a0ced66c36790f1bcb2
10beeb4b6ae81a6e259407e77ecbe1ec1781c006eab25c165785355fea9ea82a

HTTP Headers

GET /t/000/443/125.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 25429
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25437
etag: "5f4104e4-635d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 22 Aug 2020 11:43:32 GMT
pragma: public
cf-cache-status: HIT
age: 365147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LBatqQUApzU5Dn%2BcXG1XhweA1NGhvgFaWwK2ABGZ4rfgutU1ddgv8BXLWoQSWFs%2BTCfSF961NvBpQJLhlWekompRHIQmUk4cbsQI9UjhdV6SDsvx6ZJ4KofVSEF0Jycd6LVupg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec07b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/706/524.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/706/524.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (22824 bytes)
Hash
a6bb052dba617a482ddbc55d51a11032
d1aa73a285f847f32d1419a1b1b0e16a6305698f
574a70ddd2ec5278b40472e2809c759b8a5398f2ccc234a909a636f724f618a2

HTTP Headers

GET /t/000/706/524.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 22824
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24184
etag: "65eaadf5-5e78"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 08 Mar 2024 06:19:33 GMT
pragma: public
cf-cache-status: HIT
age: 365678
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vpk9thRch2KBo5VEMCYoAFpWyfxXcj%2Fv54dx17Q0PMl6btBuun3GLVSMHRhUwTFH1oCA10YOahcj19c0DqGXgPlMf%2FIuMT2qn8vkwIdF1flI%2FLy%2BGxk4rszIbXcKTV0KlXSBkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec0cb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/575/709.jpg

104.26.10.131

200 OK

36 kB

URL GET HTTP/2
img.24fastload.net/t/000/575/709.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
36 kB (35475 bytes)
Hash
7d76fd88ea9d984c0db44469615c3531
8af0587a6d478176e8b648cdc168f06b5c217623
81228d9e16eec5162d66063b300c96ba233ca9eb1a70c941b705d5625d056a22

HTTP Headers

GET /t/000/575/709.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 35475
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=37857
etag: "6389fe7c-93e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 02 Dec 2022 13:32:44 GMT
pragma: public
cf-cache-status: HIT
age: 357029
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lRCm1rlUhESJGel8%2F%2BzcAPX9ccOD5zL%2BpsEbYmlUuMBdscriF9LanLXK7POOSDHNrbPWwyP%2FRa8zECEWQm%2B48PzfxngtyKzuEvnF9qWJaNBj7etsJt4hY7XICtZPBcN2NElX7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec08b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/382/019.jpg

104.26.10.131

200 OK

12 kB

URL GET HTTP/2
img.24fastload.net/t/000/382/019.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
12 kB (12328 bytes)
Hash
1463d053a1b6d20dee6dfe552fa7b0b4
1f747d19aee4d219c735777cb341afe346336807
7d3c2696f31cf3f1341615a3ea819be2c25f053af5d8026b9cf0f1bb72a6ad22

HTTP Headers

GET /t/000/382/019.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 12328
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=12738
etag: "5db722fe-31c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 28 Oct 2019 17:18:54 GMT
pragma: public
cf-cache-status: HIT
age: 351513
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WQY%2BL7AidTvxFJRHENglRU0FSLlVj42P56DrTXSZRYhOUSEvPqD7wxYUSSwsHhm82zBIpE%2BRIttjV5c2X7V%2BzSH8iFhl6CHN9uKUvZ55HhwYA4754o2OkuukqUDPC3ONunIT8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec0ab521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/714/384.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/714/384.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (22787 bytes)
Hash
9e31e4dc2b8651c17795a93676140aaf
926fa86a43d627c5c80583ab1a58b1084988e93b
3773cf72372db7d1eeefd54464d9394c9cdc85c71a9491f7a3ff6586421f2507

HTTP Headers

GET /t/000/714/384.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 22787
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23684
etag: "660cfbc9-5c84"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 03 Apr 2024 06:48:41 GMT
pragma: public
cf-cache-status: HIT
age: 365147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6ueY8%2BBEhDu7ZwtnCvPuuulz2kyZwQjZ3q0pqHJaca6Fl92AQxXwpkbDoj60pKoxTfvMiB2Qs3I3R0lgLUxx%2BLZclNxoxK9Y9RnQ0%2B6cIImiTStZo0w5ulAw7k867KUw016PJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec0eb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/212/183/212183.jpg

104.26.10.131

200 OK

12 kB

URL GET HTTP/2
img.24fastload.net/t/000/212/183/212183.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
12 kB (12440 bytes)
Hash
d04d51224a2f4b9b384c7a3ca22c5c47
3312711659e4c1baa993de5a54b88c65eac07cdc
b80c1cc36f68e84da5425d762b8d42fc6cdc1829e667e5d61465f2b8142ac9fe

HTTP Headers

GET /t/000/212/183/212183.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 12440
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=12652
etag: "5db7205d-316c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 28 Oct 2019 17:07:41 GMT
pragma: public
cf-cache-status: HIT
age: 358444
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4mvL6bPsnHT3sjxM2hhGcAgMu3Te78YTHEDggL25RBxBiS4gLVBeuWTiEbe52QBGVPmJ5uCDUBEZAL%2F5wgMTEpjWNzGtDyha0JotVGrGUom72Pa6b6pfaNoynKAX6HqBybEy3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc14b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/712/142.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/712/142.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23753 bytes)
Hash
971131012535fc80bb255838cae5dd95
80bb4d7084428d496c41a39361f212fd283f47ac
8d003f6a3e0b1ff231de0e0958c3255f9b598a02879e51c1665bef72edb40887

HTTP Headers

GET /t/000/712/142.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23753
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24866
etag: "6605101c-6122"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 28 Mar 2024 06:37:16 GMT
pragma: public
cf-cache-status: HIT
age: 365147
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=12wozew6JnWRZ14iISg%2B7EECNUvQDCEeneXKs%2BQmyiv10K0ClOfozK0dXBDdP3geXuuL90R41VqdeQ5HsZn7uQp%2FBCxwWGPknG9E%2F8Da0vxc6Xg%2FYolLzrMRp6k0XO3H6RfiYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc16b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/535.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/535.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (20761 bytes)
Hash
fe62bfe68533e87ba9113e955dd6be55
bc855d10ef73a9b0c3ab8614c074cd6e1d520e9c
a1eabb3dd5c41cbe9bcb1c8b8b86d51fcb4f83197df6fbd222f1aecfe4978c68

HTTP Headers

GET /t/000/718/535.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 20761
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=21736
etag: "661f6c7c-54e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 17 Apr 2024 06:30:20 GMT
pragma: public
cf-cache-status: HIT
age: 49987
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0PMOx0MjbeiVyC9mwfbv1s0xjxFMyUCiEE7O5r2K9uJbKLf4FKUh7KIV4R%2BVtXx9RP4g8OV7sFJZOVki3zAlGJ00RTAygTb3m4xMGLpAztKkXCc%2BDprcnDI5svcrESC6i0MyKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc17b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/663.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/663.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21103 bytes)
Hash
5d6d45346556e010df177bf01b6aff8b
4d087152521e518d01bc01636d02f15f97655b3e
dc7dc329c45d5d2dfe84d4faa1f413566aa160686f9edc086bf03432ca0e9087

HTTP Headers

GET /t/000/718/663.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21103
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22116
etag: "661f6d69-5664"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 17 Apr 2024 06:34:17 GMT
pragma: public
cf-cache-status: HIT
age: 357858
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XocWUT27tiLWCqb7Yz4gJ0OxnTn3WLFqiwyvlk9e3B5Y6%2BLklr%2BTT4Ye0AXYvevY8aXxfkl3SzrpmpHFlDWlG8IOc47TiUFfFY%2BY1mPFJ6P%2F3C15D7KNMLwc20eqCFfrwIs0fQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc19b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/255.jpg

104.26.10.131

200 OK

27 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/255.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
27 kB (27212 bytes)
Hash
b2c56414f3eb29c4ea8af47af6e886fc
b69d7e23b2ad224592adc0620ce777f3a823f354
c76c8536aad79761b70dbca339d33954e607ed145ec892f3c7e09a25de653d6c

HTTP Headers

GET /t/000/718/255.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 27212
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=28899
etag: "661dfd6f-70e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:24:15 GMT
pragma: public
cf-cache-status: HIT
age: 145964
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iNXynZk9331w4sIQbZHYF3qqNYdWZmMztB0ftNLujE9i%2FXT9sJFyxKxMjSAX55pmn6C3GEzQXUsIpUUg4nLmkkxEiLA34ZEe6NLZ3GnN10oZgNjix4ZMzYaS%2Fz1TERh3iqv2Ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc1ab521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/571/759.jpg

104.26.10.131

200 OK

19 kB

URL GET HTTP/2
img.24fastload.net/t/000/571/759.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
19 kB (18837 bytes)
Hash
72a06895cdb12f803411a37af56d0568
3bbd8b2edd003b11827046cd372137a310cb8599
02187c1b78b8dc8f279a95f5e75dcd4f26a086a1a97002947fcac1150d8a2b29

HTTP Headers

GET /t/000/571/759.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 18837
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19650
etag: "63763cb6-4cc2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 17 Nov 2022 13:52:54 GMT
pragma: public
cf-cache-status: HIT
age: 356468
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qksDU9PLWxQvl%2BfJzDloL8PdhH%2F%2B9rfjsc6Kwhai7zxWN2P16TLlLPCzEkAU3GfgHJcaVCNPUZe4FLlXdWkvfIjktjewjSdgjVgbQKhEl6gpGNYxQWwKkZK00jnr2%2FzS2MU87A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc1cb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/453/632.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/453/632.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (23327 bytes)
Hash
2a61a2b772aeccc4d5dbec88898699f7
9f0350733b5a04e6ebf0ef77907aa88ef0add34c
6f2ff5f55dd0bb2b6f0752aa62086fe80959bec62d235f919eb9526e089a35cc

HTTP Headers

GET /t/000/453/632.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23327
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23335
etag: "60226abe-5b27"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 09 Feb 2021 10:58:06 GMT
pragma: public
cf-cache-status: HIT
age: 360548
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rNRuMZsnSVIBnoUf5%2F1BTwmU7RJNgk%2Fzd%2F%2BjBOBYq1dHOU3fXTAXriPOXjyt4jdP8FB7R1PxG1eSIHHXfGzv9KS277zQM09mMFiu9hpsQHOjDp534XnCvPAzgo2%2F4a0qiXaO1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc1db521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/709/748.jpg

104.26.10.131

200 OK

17 kB

URL GET HTTP/2
img.24fastload.net/t/000/709/748.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
17 kB (16623 bytes)
Hash
330feedc8772b003acbfaec7bd20ef2c
1c5b4da9ea0b02b4e705d7980105014ae46c0a10
e7a67581279730e2005e667631812b98f0cbd3b22a93467e785decae1c2c2162

HTTP Headers

GET /t/000/709/748.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 16623
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=17301
etag: "65fa8c10-4395"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 20 Mar 2024 07:11:12 GMT
pragma: public
cf-cache-status: HIT
age: 361176
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WYPmKPFIUAYdwH7fsru%2FiZ9%2Fzn9cUiT80uFaJPu%2Bas%2BekNC3PnaQIMz1PsuxxgiR9rvTn7omOAazfPzLF%2Bw6jxTSixNurna%2Ba1cOAjC13Boxrp%2FOVMojkUfa6GI5wQAKoSlXPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc1fb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/037.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/037.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23659 bytes)
Hash
b8d374fbbac4e3e20a0094ca18e73c2d
e0382b3959e80c0c9eb1faa247373c17933abcbe
29d8a82a45ddad0be0563fc47a1880e1947ba5349aa78f8dbc28aa3219b1386c

HTTP Headers

GET /t/000/718/037.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23659
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24720
etag: "661cc957-6090"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 15 Apr 2024 06:29:43 GMT
pragma: public
cf-cache-status: HIT
age: 228667
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rbd8RFBrVzap%2B4Rc58JkM6HrHJL6sFFTku88cNd6HRqJvskVABE%2BiBlPSWyan3FV7t4GGn%2BTSiNnK5YpnBHN2o9X2WGDX6fFBpQl9a26%2F1Sm3VNe6MhEasKA1jYJ8W3wWsgrOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc25b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/403.jpg

104.26.10.131

200 OK

26 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/403.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
26 kB (25925 bytes)
Hash
c99f82b0d8b6aa6f0b5998819ba44366
e94baf6c46e3633dd1e923c936181cba6967b54e
05855203ac39003797a8f082fc43004204cae4e6a58c4a673d100bf38a93f121

HTTP Headers

GET /t/000/718/403.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 25925
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=27363
etag: "661dfe86-6ae3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:28:54 GMT
pragma: public
cf-cache-status: HIT
age: 191877
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=120r42GnHXmnkk3YyJwDfOZ6KfAm%2FsrZnEdAEdxqOD6YuQidS8BJ2WfKTrLKeT95bTOYVxCCM3YOWhcvUJUCFt1wUvv5iZHWhi6Kc4vpq2UyOIAEJtD%2Bfapka3cRW3cR2HBRag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc26b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/190.jpg

104.26.10.131

200 OK

25 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/190.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
25 kB (25367 bytes)
Hash
47c948ad7cdc95fe880372bbdfd82769
cdd93f50d0ddbccb102ffe348374fc653ef03920
9419fd57a5dd82be2c5c007bc83b938a2f32c0b08b08fbf07abd8778a0fb9a81

HTTP Headers

GET /t/000/718/190.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 25367
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26682
etag: "661dfd03-683a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:22:27 GMT
pragma: public
cf-cache-status: HIT
age: 139339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=446zRFvUrfO3ZFsQpF6sFBpG8wQ07aN8dvMvpWpse3regTUxKPwChpR1tEEWEn4jjQRFgjYULtfBOs8NVmPeupu0APXMd3sdl6nBGUsK8905fYu8jI2D8eLJu6k%2BLkV1lXiZxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc27b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/494/735.jpg

104.26.10.131

200 OK

27 kB

URL GET HTTP/2
img.24fastload.net/t/000/494/735.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
27 kB (26869 bytes)
Hash
ae6ac3d430f8505c3bab8b94df937faf
a9bfb65b01477beec05aaf07c4ef6570cd5fa015
44f014ff6f91c43e783154b56af4dd2f9a5bab9ddaeca32a93f075084e7b5953

HTTP Headers

GET /t/000/494/735.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 26869
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26877
etag: "615e82ac-68fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 07 Oct 2021 05:16:28 GMT
pragma: public
cf-cache-status: HIT
age: 364833
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D%2BRH2ywXy%2F5WAvyKHL6OaxWe9DuTuw504KZSn8riD8JmNvG7qpC1%2BX66SmAtyvtrLmaojQwsD04yBNEkIxOcGxfDEXZpO885xv0wgqkXQJjyjFyqAkXGalM4EMbDzp7DNWBhZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc28b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/632/794.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/632/794.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (23068 bytes)
Hash
c631769d8386a10f51a465e928906d3e
500d49c852503c063cc94b483f7532f44ec1c6dc
d2fb0ef51c29fccf0fd299f6173d965182f983b8be0ba7540547f972f777fea9

HTTP Headers

GET /t/000/632/794.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23068
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24253
etag: "6493fd01-5ebd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Jun 2023 07:49:21 GMT
pragma: public
cf-cache-status: HIT
age: 350554
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RO6DfvWasAOghddf2tkYL%2BDjvIicW5%2BlJ24OdSkPPalhHLVSxWyKK1zqndhkydnL4ALGmoF7WESmogaFEgs%2FQNoQRe8trTPLNiWRJ1HTCt9FitR9no4sIwAwp33hJmB%2B9G6BkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc29b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/716/147.jpg

104.26.10.131

200 OK

30 kB

URL GET HTTP/2
img.24fastload.net/t/000/716/147.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
30 kB (29574 bytes)
Hash
7c2433760a621ca33bd30ca77143e5f6
5a2f05249d5adc13700943da997a707b5bdc32f9
f88d3e99a6110a0463b7d52bfd4ee5afa87d63b3a5698f93e84d3fe29c009cff

HTTP Headers

GET /t/000/716/147.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 29574
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=30921
etag: "66163338-78c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 06:35:36 GMT
pragma: public
cf-cache-status: HIT
age: 357029
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CUiWWQj%2BIxB9RREKAqeg3HIAyjzUKsRgnFgzKRBbEXtGl1lxhLtNmexP7xyZtzJH8Ck9728lcf%2BkmA4l5ORZgFpe99cZ0x43ciKG6LifaAcV19G7X33FVA8a%2FPV1LVpiMruO1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc2db521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/714/350.jpg

104.26.10.131

200 OK

37 kB

URL GET HTTP/2
img.24fastload.net/t/000/714/350.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
37 kB (36973 bytes)
Hash
2a9a548f1616c1a9ad3320f9528244d2
cadd45cf7110164037c4d56c95696e368f850b4c
f97a3b1b79d1f1c8c9074bde8cc624657d706bbece540db33306692187e0b315

HTTP Headers

GET /t/000/714/350.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 36973
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=39555
etag: "660cfb96-9a83"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 03 Apr 2024 06:47:50 GMT
pragma: public
cf-cache-status: HIT
age: 361491
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0RLDa%2F2Oqv2Clg0YBNJKU11envGhUp59z1nvQfesSDIBpu4dyZqGQpII6ZlJMvSdlCOTxYrZ9oyeaFOedDDpjAiPtXpS1E%2FE21aB5c53EkvlhQYW2HxYDlyk3UFyJmMIfW646w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30ec10b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/545/545.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/545/545.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (22694 bytes)
Hash
8177d6aa398ad18e43fbbdb9644e0d16
d86b111b5829189910c817e8097659bb85bf4cc7
0d49397d7fa225d15e27fdbd6718284bed624ed84d601554712b7fcf1ea88811

HTTP Headers

GET /t/000/545/545.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 22694
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23829
etag: "62edf489-5d15"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 06 Aug 2022 04:56:41 GMT
pragma: public
cf-cache-status: HIT
age: 348808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0ByzK8dsrsvGi4zLFpwlILjNjYGb0nLor61yuJ11UGmTDzTK0rFh0u0jnOo7jPXoIx3CfK9%2BihFcFb4gXoBVjzzCyMuvxyfVNIVInzELOyQ1P2PMqBsPF1A6qXrhEW%2FBfWCTzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc23b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/716/497.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/716/497.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23561 bytes)
Hash
0d4f97cb542d2cb8f82877b2d04fb310
42128f6f4b099c5ea51aabc026866734885788bc
8d32261140aedce4cdd24173aa099c0c013780289126d767ff371c44dd79af97

HTTP Headers

GET /t/000/716/497.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23561
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24479
etag: "661635cc-5f9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 06:46:36 GMT
pragma: public
cf-cache-status: HIT
age: 361251
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r9gpzhpQCKzwrgDDNl9A2%2BzSeaVevEWpMV%2Bf2fk97ZIRB4XZNh2prt8cTxBUubS0yTUKPDuFtg5%2FrgwO%2BqCG%2FXTu%2FwOEdM9sZlnN52OfaRm6II6at5xuTO0CEL6Bw9zIEdCHvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc2ab521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/176.jpg

104.26.10.131

200 OK

28 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/176.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
28 kB (27884 bytes)
Hash
3a8174e90044623b485cec465ae8e8b9
5d36c2d089738bff83ba8a210293acc7662de945
de30b5720bffea880c981109a12259a6f96f5cfac9c532aec922648282eb3a7d

HTTP Headers

GET /t/000/718/176.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 27884
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=29725
etag: "661dfcf0-741d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:22:08 GMT
pragma: public
cf-cache-status: HIT
age: 130461
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xs8y2AFUohcAUqnRfIR0i%2FnCoj3VLtxXGc4ITf2GMGfZLKRIdklvjqSiDQfQmK9ci17aTT17ZCCeJm6pd9wUPqmXEoSriB9HbStz1lzVYFxhOH7n%2B5bILLzDLa125i3GhAz9dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc2fb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/438.jpg

104.26.10.131

200 OK

16 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/438.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
16 kB (16475 bytes)
Hash
cb1f8e2c713c9f7600fa3b035d5aa759
279602e05be12ac169a7d214fc557cbdade5ca3c
4e2be1c7613214babf4abbb4b3b646052dab18dd97a78b670044efaafc383a24

HTTP Headers

GET /t/000/718/438.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 16475
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=17127
etag: "661dfee0-42e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:30:24 GMT
pragma: public
cf-cache-status: HIT
age: 322569
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MErCv9wRLOu%2BDsC%2BLFTtJzYmitVjNjNAQr4iZiWzuQGjh9ogAU%2BSPYV5w3FyPfrmnU%2FYF%2FwFoKVuPhDrI1Hb7skUNsVMSvSedbSl%2BgQZJzxgmtWVUCw8uOEXfUT7SQN9k76dQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc30b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/716/396.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/716/396.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23988 bytes)
Hash
f3db9c2316887ae08fdd5ded1d14d59b
90a9ec4b5aac0c95469786a0940ecfbc1a36940c
20b1655a8a67f22965aee893202b76cfc2304935200dbe5a9a852ee630368b6f

HTTP Headers

GET /t/000/716/396.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23988
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25195
etag: "66163527-626b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 06:43:51 GMT
pragma: public
cf-cache-status: HIT
age: 352313
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDeuCGGLGk0%2BRBUHN1hqXZSbm%2BpBrS7lmcRclwpF2RoNHyjccFUMrdTROAYpMeMozu0O1gPeHqTMkdNMUzEw7qDIGG3bwFbgtHuJu8qEli41mi%2Fwl1mqysRGuxzy9wRydI6fhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc2cb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/715/698.jpg

104.26.10.131

200 OK

28 kB

URL GET HTTP/2
img.24fastload.net/t/000/715/698.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
28 kB (27615 bytes)
Hash
82d8bbb61ed158ce9cde5eb4e246bc46
cedd8b89f84a008838dd49411250c959c1f4076b
8626a5e24632dc3a3e148727fc3b8f86ff8cfeaee7d29f2f17784669a24c8b45

HTTP Headers

GET /t/000/715/698.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 27615
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=29251
etag: "661397ce-7243"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 08 Apr 2024 07:07:58 GMT
pragma: public
cf-cache-status: HIT
age: 359667
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TOkqNN0kWoYY7Kp4DWZiZthfzdjyiQjukSlu2VDau2T9cY%2FtSUhh6umJ3865RuOO%2FvfhvbzJZmd0G9GPa894cGJYVDAX7KjCU4NqWT79fIaawXQ8xIpNwAAZKghp0ZdGpSbtMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba30fc2eb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/527.jpg

104.26.10.131

200 OK

29 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/527.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
29 kB (28658 bytes)
Hash
4ca4f0b32d31ca408bd3746f077ea4cf
037b97b63d9877997903ff88563ea4185ffa40cc
bd92535c619cce6b300b719ca2444422d9bca53bb4177a58f76998e8b5f07201

HTTP Headers

GET /t/000/718/527.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 28658
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=30130
etag: "661f6c6d-75b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 17 Apr 2024 06:30:05 GMT
pragma: public
cf-cache-status: HIT
age: 355133
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lucvZ%2FkyScb3IxZaalHOSOOHO460XszRfswngEHp%2FX7d4I4kyHDWc7zJxIDFJbKOdHIEhiksZYp2JXKIrcf%2B2M5V2sK00PFkta2Dy8cjPO4GqFEUZQV8zU15hWwyM1ac4HSsmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bccbb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/712/337.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/712/337.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (20640 bytes)
Hash
9da04161bc31004d2fb8b50f42b245c3
6509ee59e85d7efec8236f444cda80bc67a07319
46c2dbae4c93c7f54873952a2f2afad4dc066916d2b17a0d2a18b6d8e7167bbf

HTTP Headers

GET /t/000/712/337.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 20640
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=21565
etag: "6605118a-543d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 28 Mar 2024 06:43:22 GMT
pragma: public
cf-cache-status: HIT
age: 360076
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TRYb%2Fcl3FgO9h4UPOfN7ZAjeaLiRJUD5z1ryzxTpC1bgc%2BdljEWK1xZ4AU9eoE1qhQG1iQNFq47THN0nk7Kp34rwpX4EBhZmqjcFbvQaCB4UjoJ3nQ3MPywHCOVdHKAQMLlrdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bccdb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/102.jpg

104.26.10.131

200 OK

19 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/102.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
19 kB (18688 bytes)
Hash
ef8ef7170ca796d9485287493fc673f1
21947c51bbd9fd78af1bdec011a08031835876c0
80e7da77344c9143217fda1ead47ba4811aa6f7b9a004bda426922f8b814cf3c

HTTP Headers

GET /t/000/718/102.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 18688
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=19665
etag: "661dfc56-4cd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:19:34 GMT
pragma: public
cf-cache-status: HIT
age: 323015
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sYFzJlc%2BG%2Fq52stsg5Zsnwq08HnFWgVH0ayEKGOpv5V8YraQnzdidJ3PuEnPvcO2iCv6NRuJe0gI55zK4Bjo4Z%2BeBs6DdeMERkoK0ajbVYvmHsTOREAwU74fQzmBAqKkiZPoRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcc9b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/716/129.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/716/129.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23484 bytes)
Hash
cb595933bcbc6ce9f5646ff1db6ab941
946542fe5894b20999d4cf95b83f2ef35166a1d9
acacd4a3dc6a5f448eb13748b5479553f1a78de3b6659ff592fbd351c4656e63

HTTP Headers

GET /t/000/716/129.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23484
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24439
etag: "66163312-5f77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 10 Apr 2024 06:34:58 GMT
pragma: public
cf-cache-status: HIT
age: 351469
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bZd4TLYexctTim8fw1VYo3Y4U6ZaCneCMHLZxHcEpHO8VcxdqA3cVzeKYo3VrlqKA1dNXlyKCQG0UKu5HdA01znn%2FiBcp6EptX%2BeJHzd7re0Cea8hlTGTzEQ5O7J70hCeBT15A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bccfb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/175.jpg

104.26.10.131

200 OK

27 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/175.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
27 kB (26892 bytes)
Hash
9e23ff750f6c52d51e0d856c48e10de3
8b6f5026ffee2c4faa5a289dc1e531dc924b650f
028032026e85e04b5a983b7bd5d3c58d958ed670299cdecd922c91eed968e5f4

HTTP Headers

GET /t/000/718/175.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 26892
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=28336
etag: "661dfcec-6eb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:22:04 GMT
pragma: public
cf-cache-status: HIT
age: 130461
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zeVpf4Nb29rC4YWPE1axbgx%2Bw0ytlwt2Sv6BD39lMe8%2BjYU89voVrpVWzg2UTqzSRWXIOU5SCyKJeQW2PbKOm3jiyC7eqAwSC%2Bebt1zccrpFc6ykcPBQxcgIeOZ7rrbsx7Tr1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd7b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/356.jpg

104.26.10.131

200 OK

31 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/356.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
31 kB (31147 bytes)
Hash
cc7ecd81ab5c7dd4e6da298abb2d9a21
876422cdf17e3d3d23605b53ffacecd914ac8536
a68389f0ef522b2dd1c45148f5144658365e8c2bc14282e45c5604fb46a76697

HTTP Headers

GET /t/000/717/356.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 31147
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=32823
etag: "661b6d76-8037"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 14 Apr 2024 05:45:26 GMT
pragma: public
cf-cache-status: HIT
age: 349597
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y3NuYl2OVpMpOR7mYGar%2BSrbrmF1EMKMyMWyxckSKAnNk5KhUAfgBHZSF9OZUmcAjuTzJ3SPCSGjdaAFK2s8KeYK6XpXMm4%2Bf3lLwkDWRPtlSEPTrpWO3zbyk%2Fqb26fODtkZeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd6b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/298.jpg

104.26.10.131

200 OK

24 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/298.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
24 kB (23570 bytes)
Hash
520ea506c08c6ef97681973359b35bdc
f5a653b0c284b3ac4c13aabe900d699a0308f592
b2f7e226e402e017368f051bea59df3d51fa13830995d2a83d296ee9b2e9d64f

HTTP Headers

GET /t/000/718/298.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 23570
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24639
etag: "661dfdba-603f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:25:30 GMT
pragma: public
cf-cache-status: HIT
age: 186772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EeiQlTLOAGb1AQpiMXHE6wSbXIskQYQeaNgob7xulnpoC%2Btn8V8uliCIk8iQuUg0rM%2FM2olp8EMNXIaUZrIy%2BD1ZWZTtPhQDkm2dccvEO9TH3FHb222U1W7iK9Odx1dFFzB2Ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd1b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/516.jpg

104.26.10.131

200 OK

22 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/516.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
22 kB (21662 bytes)
Hash
9e93b922ea94e3b4a67803eadbf608e8
4574fe206a900786da11f10009b36408ac2f8ee6
b5b33f21a26a7db8532bbb9b83eed55b35e7dcc96918bebe812366ef785de9cb

HTTP Headers

GET /t/000/717/516.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21662
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22687
etag: "661b6eb0-589f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 14 Apr 2024 05:50:40 GMT
pragma: public
cf-cache-status: HIT
age: 358744
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zy7YYVysn8fGbhYsrgfJ1qdoM4SSXBKttlt6uKbp623dKMTi9KqYR172E4pGX1J5jT5FfuNvsmw7nuTHguG0HYET6jBjfx%2BofJxeKCniFRtkwJGtIQapLhlLJXI3arFoYyvEWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd8b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/331.jpg

104.26.10.131

200 OK

23 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/331.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
23 kB (22900 bytes)
Hash
d649ef9662cc5d86b1dc792c6dca7d07
7a67a731b41128faedd6f0ae7ebf39aaa7bb8768
1afb2c49ab2fedb58af9b415033c062afbe21b34f58e8a28a06ccff547180ee7

HTTP Headers

GET /t/000/717/331.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 22900
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23823
etag: "661b6d4d-5d0f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 14 Apr 2024 05:44:45 GMT
pragma: public
cf-cache-status: HIT
age: 355830
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VqGTKYbjL2KP95BrR5IYOMXPAaS%2BhXsvfoHAmscg6lJgpGa0veTSMPkPh847wMwOjV4HtW%2Bhk395dc4PpU%2Bp8Q%2F6INQ7uv0pvBnhUnz6OErzEKvJwVLJgk6MS1O3QPKjpAgokA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd9b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/046.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/046.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21376 bytes)
Hash
730723acef17667eaf54248687fd0165
032fd41d824568e37ca8d9af0edb6889c1f31a27
56b8bb0fcbc3432c77f1a9c5de493a85f5aba22907a21938e3b2c08b3d4c818e

HTTP Headers

GET /t/000/718/046.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21376
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22401
etag: "661cc96c-5781"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 15 Apr 2024 06:30:04 GMT
pragma: public
cf-cache-status: HIT
age: 228978
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MDqmlE0wgKvVIr7EbGB5nY9AA17OyPT92G01BnfXsc9C2a6YEwHel%2FaGpa532kVtAp5BSzEg31k2hDqMdr7Io9cFuhcWiF8HBWIOBCXyTwP%2FU0iz1TUb6F6BEysAp%2BBUG%2B0EXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31ccdcb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/408.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/408.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21132 bytes)
Hash
9c09d57f5d83098c8fb00971550305a3
4f53766176af57c70d1ca5f65d0785ef01892e44
483ee08ba6a950a67df83caf149b28ba603d6e70fe502a0795d46581ccba1915

HTTP Headers

GET /t/000/717/408.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21132
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22197
etag: "661b6de5-56b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 14 Apr 2024 05:47:17 GMT
pragma: public
cf-cache-status: HIT
age: 350941
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwy0w6zFagkiJIR%2BbzK2PpmjIhYKlJZvAfjT%2Bvz%2Fn%2B1FtCNTMFvZVsmQjQTcGZ0WpA53KzufLjv5khAznAw2rw1M0vUGnaowBM6UNXUjW7TapdqRZ1An%2FYkbMcZMKJypCwZuTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31ccddb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/116.jpg

104.26.10.131

200 OK

22 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/116.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
22 kB (22441 bytes)
Hash
662f3b969388c1e94fee94bb7edcdda7
90feac2439a6c2d2a1592ee885cc1a215b93d06a
959d1782fbf6b6e5ec526b0dcc60e016c69f364db7eb6ed84b0cb413c539c954

HTTP Headers

GET /t/000/718/116.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 22441
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=23482
etag: "661dfc76-5bba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:20:06 GMT
pragma: public
cf-cache-status: HIT
age: 165521
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PNkorMpJxlVjGcjoux6onz7bClaqPjtlvrLjC%2FfhZz28oshWr4W0%2B3qpnAYnepIqFB7gb686q%2BpwiZrwGonI2Rf5poLZycgm2w6EjEDv%2Fww9nHMWGR0Y5UEWMsvAhkyL1VufsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31bcd4b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/071.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/071.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21223 bytes)
Hash
ec3295917ac96b9a3bf36797ac8cec0b
cfc9f7104ecccaef4d6efc20fc2df8e9395aa574
ea9a206dfbde3388efb33aa0fef2ce91b81dbb440f52f3556afca8952d2e0c5a

HTTP Headers

GET /t/000/717/071.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21223
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22092
etag: "6618e56a-564c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 12 Apr 2024 07:40:26 GMT
pragma: public
cf-cache-status: HIT
age: 334986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AQsrSoExHkAfzx2jUGgx0RDV%2Fef0ExnolEVO%2Br0tIGYOqZPWAijiaBWRZhXg9sb%2FimgJedqo%2BP32Z0B4mXmZRLtqT3KH57V08OPpCRuJ16Sr4ci%2FE7btE3b6CxqAqiAogzT13w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dce7b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/420.jpg

104.26.10.131

200 OK

26 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/420.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
26 kB (25797 bytes)
Hash
16f5344fc8ecc643368063294b7a4452
afdf478868997e8ed779e9f965aaf94be068fc2c
fd955fd65ac6d34b032bf1b725b6f264d10048eaec821558c8de9d15ca120624

HTTP Headers

GET /t/000/718/420.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 25797
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=27254
etag: "661dfeb0-6a76"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:29:36 GMT
pragma: public
cf-cache-status: HIT
age: 99493
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qxeFAKNAdfQmuX5I%2BS06Fpc%2FdG%2F4NMMWuHnmm0FtMk5%2BYWDLM0ileuk0t9jSxy1%2FFvSsZVcIU8VIRxfNCJ3seUWDtNSw%2BNmR5WBTxOZksiXdXtLMTidkBjV73sseqj1EU9Mh%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dce8b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/155.jpg

104.26.10.131

200 OK

29 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/155.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
29 kB (29234 bytes)
Hash
f98191b4d9476065024717605a201b09
eaac7dd5b6f0bf2fd072f8f3639720e1e13f1789
9a53631f5ae47d319d5de506c328fcadb67dde767113a89fda621b3c4aea6c28

HTTP Headers

GET /t/000/718/155.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 29234
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=30946
etag: "661dfccb-78e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:21:31 GMT
pragma: public
cf-cache-status: HIT
age: 131555
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SPvTMZ4K4Qdec0Fsd7pKibXO%2BXKlTqk2t3YOdQmbFk64jTf0mkKXMWdU32MH%2Fv7WNfiXgJM0J3chAEUsA4%2B4pR4I5fa6qSvdndku%2FIdZHE1bgJUrbiz4JBG%2Bx7TFGFTXZtrieg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dce9b521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/361.jpg

104.26.10.131

200 OK

20 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/361.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
20 kB (19522 bytes)
Hash
73735d7f280d93de221165f26fd98099
1ed8e94f3ab02312efff72577b5bee42c3d73297
d1a142a6b9dba3f24c0b69b412b74b286d38ba7b6bb7f97ee5bce29a6cdbb82b

HTTP Headers

GET /t/000/718/361.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 19522
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=20509
etag: "661dfe32-501d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:27:30 GMT
pragma: public
cf-cache-status: HIT
age: 316364
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9DJ0edDmVBZtR9jSpGzldjruniw%2B7QozprzYOl2Q0T2jH1FeOSEDdaTrMQo5WLg1otXnzJ%2FGNlgqCRVtoE87U7pW8jXOgTCyq32byGZUqmO%2FWLDqa3RNPvJfSMuJc7z8W7%2BcUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dcebb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/717/129.jpg

104.26.10.131

200 OK

21 kB

URL GET HTTP/2
img.24fastload.net/t/000/717/129.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
21 kB (21249 bytes)
Hash
5246b204dc8896137041c615c5dee707
32d73e64740f74326acbc7e0302c7b1d0b35236c
6b86ec923b0d2d8e27bc24d0b81bfc29a0d797bd35f9d657003d528ed9057c34

HTTP Headers

GET /t/000/717/129.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 21249
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22080
etag: "6618e5d9-5640"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 12 Apr 2024 07:42:17 GMT
pragma: public
cf-cache-status: HIT
age: 348137
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O3OurYy9%2F989qdtcBqzKa9k77Zr%2FaHxXKT46ihph9EK4yQ%2Fr2aOBJe0E48HTpK0v4mPow6DDXHDaBxXz9sN1UEZzI%2FFJWAhWf6GJRDeTzU80aGW64lZZtCwDMFL1S7eSNvk4Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dcecb521-OSL
X-Firefox-Spdy: h2

img.24fastload.net/t/000/718/263.jpg

104.26.10.131

200 OK

25 kB

URL GET HTTP/2
img.24fastload.net/t/000/718/263.jpg
IP
104.26.10.131:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject24fastload.net
Fingerprint89:9D:9C:1D:31:B5:6B:35:F7:B0:E8:35:DF:EA:54:D6:65:25:2C:76
ValidityThu, 28 Mar 2024 16:40:57 GMT - Wed, 26 Jun 2024 16:40:56 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3
Size
25 kB (24642 bytes)
Hash
e559a540748e4c5ff1a9d7db4e65d135
35dd2f3c9f33af9abf12f14326fd3b09f7e99c90
32cdd5842644257a8442d846d24db89882d51feae2fb68971ab1b739ae731dba

HTTP Headers

GET /t/000/718/263.jpg HTTP/1.1
Host: img.24fastload.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:05 GMT
content-type: image/jpeg
content-length: 24642
cache-control: public, max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25750
etag: "661dfd7c-6496"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 16 Apr 2024 04:24:28 GMT
pragma: public
cf-cache-status: HIT
age: 141743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UlCm8zGgaJbVaWh3rmDroVnRFh5cqOjlja2eFPzM280z%2FAls9sQ6fwD3UVUX6EsgpbkdB5hWksU6%2FFHMfz%2FPlpazGn9nZeKQHTyhavi6sZi1t2QU07tFDq6Bq5vOVSpxS9mQZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ebba31dceab521-OSL
X-Firefox-Spdy: h2

js.wpadmngr.com/static/adManager.js

45.133.44.52

200 OK

1.3 kB

URL GET HTTP/2
js.wpadmngr.com/static/adManager.js
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectjs.wpadmngr.com
Fingerprint60:8B:32:7F:ED:77:26:33:0E:F0:C1:0F:02:66:F5:DB:C6:0D:1F:70
ValidityMon, 11 Mar 2024 04:00:58 GMT - Sun, 09 Jun 2024 04:00:57 GMT

File type
gzip compressed data, from Unix
Size
1.3 kB (1320 bytes)
Hash
c0b5f4b7613ec85e856eb95ca5a5dad9
f975a558e56958b76d9a9763e8547056dc94bdca
c6d3a4580a53a8b6afc7674743b6ae4d290ae03cdc84c648c75832d7ff9f088f

HTTP Headers

GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:06 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 23 Apr 2024 09:45:14 GMT
etag: W/"6627832a-6c7"
content-encoding: gzip
expires: Sat, 04 May 2024 21:59:06 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

davalka.click/static/img/thumb-preview-start.svg

109.206.176.250

200 OK

1.2 kB

URL GET HTTP/2
davalka.click/static/img/thumb-preview-start.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1194 bytes)
Hash
1a1d368fa6170e410be091872dca07c4
c65be2c1b6cb1c51336c76f161b5536d40721838
7c1c6930a74971d6d5623daaf4abd7466eab6071b6a5644c14059c3b8e6392c1

HTTP Headers

GET /static/img/thumb-preview-start.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:06 GMT
content-type: image/svg+xml
content-length: 1194
last-modified: Tue, 13 Jul 2021 07:15:04 GMT
etag: "60ed3d78-4aa"
expires: Mon, 03 Jun 2024 21:54:06 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

24support.cc/js/stats.js

109.206.163.225

200 OK

19 kB

URL GET HTTP/2
24support.cc/js/stats.js
IP
109.206.163.225:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subject24support.cc
Fingerprint34:81:4A:F9:D0:13:A3:A7:62:98:39:42:02:7E:AC:6B:BF:41:76:07
ValiditySat, 09 Mar 2024 03:00:26 GMT - Fri, 07 Jun 2024 03:00:25 GMT

File type
gzip compressed data, from Unix
Size
19 kB (19313 bytes)
Hash
ef17c9ca19608a2f3a44559a0f24d1f2
2a7e95fad5a15263374e7f97b20ce1b95c22dfbb
1f9b3fdb6e555141bae061d5efabd104b7a2e1b31a78d1d5d1c5911f248be625

HTTP Headers

GET /js/stats.js HTTP/1.1
Host: 24support.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.21.0
date: Sat, 04 May 2024 21:54:06 GMT
content-type: application/javascript
last-modified: Sat, 22 May 2021 11:40:36 GMT
vary: Accept-Encoding
etag: W/"60a8edb4-c8f1"
expires: Mon, 03 Jun 2024 21:54:06 GMT
access-control-allow-origin: *
pragma: public
cache-control: max-age=2592000, public
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 45300, version 1.0
Size
45 kB (45300 bytes)
Hash
5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:15:01 GMT
expires: Fri, 02 May 2025 02:15:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
age: 243546
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2

216.58.207.227

200 OK

28 kB

URL GET HTTP/2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28444, version 1.0
Size
28 kB (28444 bytes)
Hash
e996a4db02cc36705ce700e4b5d06b3a
c5fa1dff68d7d83689f58bc498caea9041cf7b75
7e9c22d02fc319b701844b334477a05fd32acee9668feb98672f6c27887f79cf

HTTP Headers

GET /s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:30 GMT
expires: Fri, 02 May 2025 01:50:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:45:23 GMT
content-type: font/woff2
age: 245017
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.capndr.com/advertising.js

45.133.44.53

200 OK

0 B

URL GET HTTP/2
js.capndr.com/advertising.js
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectjs.capndr.com
Fingerprint0D:30:A1:FB:7E:A0:EC:89:85:17:27:67:37:21:DA:E0:CB:E3:26:06
ValiditySun, 21 Apr 2024 03:00:41 GMT - Sat, 20 Jul 2024 03:00:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertising.js HTTP/1.1
Host: js.capndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 14 Jul 2023 08:23:25 GMT
etag: "64b105fd-0"
expires: Sat, 04 May 2024 21:59:07 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

na.nawpush.com/tags/110895?version_name=b

45.133.44.25

200 OK

1.5 kB

URL GET HTTP/2
na.nawpush.com/tags/110895?version_name=b
IP
45.133.44.25:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectna.nawpush.com
FingerprintE4:8A:6D:1E:95:BA:50:33:94:D3:16:FE:4C:61:AA:DE:72:B1:70:87
ValidityThu, 28 Mar 2024 03:00:38 GMT - Wed, 26 Jun 2024 03:00:37 GMT

File type
JSON text data
Size
1.5 kB (1487 bytes)
Hash
522cb1d41115b6f19387a4287d22de44
37edfcadf3552e333777676272d4911bf137fc22
7399d7ced49292b702929dcd3a23b4dcbf12d569ec0c9d9b9d28dea5912f9293

HTTP Headers

GET /tags/110895?version_name=b HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-type: application/json
content-length: 1487
server: nginx/1.24.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.24support.cc/api/v1/collect/incoming/

193.42.110.203

200 OK

0 B

URL POST HTTP/2
stats.24support.cc/api/v1/collect/incoming/
IP
193.42.110.203:443
ASN
#60144 3W Infra B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectstats.24support.cc
FingerprintAA:4B:E9:11:5E:C1:2A:E2:66:8D:94:40:7F:74:9D:56:23:26:B8:D1
ValidityThu, 11 Apr 2024 03:02:03 GMT - Wed, 10 Jul 2024 03:02:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /api/v1/collect/incoming/ HTTP/1.1
Host: stats.24support.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://davalka.click/
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.20.1
date: Sat, 04 May 2024 21:54:07 GMT
content-length: 0
access-control-allow-headers: Content-Type, X-API-KEY, Origin, X-Requested-With, Accept, Referer
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://davalka.click
X-Firefox-Spdy: h2

davalka.click/favicon.ico

109.206.176.250

200 OK

1.2 kB

URL GET HTTP/2
davalka.click/favicon.ico
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
c9f06a87ea7049331d77fed73d8b7c22
115daa6957bc00dfe74d89333ba0d614457a8f22
26bc5463a4e5abdf92c84dda0d395a242a6e81d3d8ba1c978a80f66df56f6a66

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:06 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Wed, 14 Jul 2021 12:16:50 GMT
etag: "60eed5b2-47e"
expires: Mon, 03 Jun 2024 21:54:06 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=110895

157.90.84.242

200 OK

0 B

URL POST HTTP/1.1
fp.metricswpsh.com/fp?tag_id=110895
IP
157.90.84.242:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /fp?tag_id=110895 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://davalka.click/
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sat, 04 May 2024 21:54:07 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://davalka.click
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers

3fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI3NTUwMzk5OTE3NjIyNDQyMDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMTIxLjAiLCJ0YWdfaWQiOjExMDg5NSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjQxLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9

45.133.44.53

200 OK

0 B

URL GET HTTP/2
3fb4026cec.ffbd26c481.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI3NTUwMzk5OTE3NjIyNDQyMDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMTIxLjAiLCJ0YWdfaWQiOjExMDg5NSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjQxLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9
IP
45.133.44.53:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subject3fb4026cec.ffbd26c481.com
Fingerprint27:04:EE:66:BA:5B:49:EF:14:C8:8F:A8:F2:D9:35:3D:F6:0F:40:6A
ValidityWed, 01 May 2024 02:50:26 GMT - Tue, 30 Jul 2024 02:50:25 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI3NTUwMzk5OTE3NjIyNDQyMDAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMTIxLjAiLCJ0YWdfaWQiOjExMDg5NSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjQxLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9 HTTP/1.1
Host: 3fb4026cec.ffbd26c481.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

fp.metricswpsh.com/fp?tag_id=110895

157.90.84.242

200 OK

58 B

URL POST HTTP/1.1
fp.metricswpsh.com/fp?tag_id=110895
IP
157.90.84.242:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type
JSON text data
Size
58 B (58 bytes)
Hash
87385fcd2a67fc74d2fa67366ba68ea2
a604cdbb1d31ce257e8643eee9219c9c724c200c
9307cbb21345500294eae459b18a8ffb2bd2fcccd928a09efbc1e324fa9c9995

HTTP Headers

POST /fp?tag_id=110895 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 1836
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 04 May 2024 21:54:07 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 58
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://davalka.click
Set-Cookie: id=2777208882572227643; Expires=Sun, 04 May 2025 21:54:07 GMT; Secure; SameSite=None
Vary: Origin

awpya.com/in/multy

168.119.25.102

200 OK

0 B

URL POST HTTP/2
awpya.com/in/multy
IP
168.119.25.102:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /in/multy HTTP/1.1
Host: awpya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://davalka.click/
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx/1.18.0
date: Sat, 04 May 2024 21:54:08 GMT
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

nereserv.com/in/dip?site=native-push&wl=1&event_id=6e812833-dec9-4078-80a6-2462ae92e312&subid=2098604473&sid=510437173&spot_id=413058&created_at=2024-05-04&timezone=0&ver=7.282.0-b&is_native=1

168.119.25.102

200 OK

0 B

URL GET HTTP/2
nereserv.com/in/dip?site=native-push&wl=1&event_id=6e812833-dec9-4078-80a6-2462ae92e312&subid=2098604473&sid=510437173&spot_id=413058&created_at=2024-05-04&timezone=0&ver=7.282.0-b&is_native=1
IP
168.119.25.102:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/dip?site=native-push&wl=1&event_id=6e812833-dec9-4078-80a6-2462ae92e312&subid=2098604473&sid=510437173&spot_id=413058&created_at=2024-05-04&timezone=0&ver=7.282.0-b&is_native=1 HTTP/1.1
Host: nereserv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://davalka.click
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 May 2024 21:54:08 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

173.194.221.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
173.194.221.84:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:hDYPbaeB1YCpes6_IMdN6yFPJYT9uQ:e4gOSaB4kjpPjJAM; Expires=Mon, 04-May-2026 21:54:08 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 21:54:08 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQwkNGpB9wcuSLErDpTaAVOsIj5ygQGX9w2c2wGENSV5DWrwkjHYd8zepy7muMWQ4HpnFkdOtw
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-glkTQKuEsQf8o-N4Whf_Hw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQwkNGpB9wcuSLErDpTaAVOsIj5ygQGX9w2c2wGENSV5DWrwkjHYd8zepy7muMWQ4HpnFkdOtw

173.194.221.84

302 Found

424 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQwkNGpB9wcuSLErDpTaAVOsIj5ygQGX9w2c2wGENSV5DWrwkjHYd8zepy7muMWQ4HpnFkdOtw
IP
173.194.221.84:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type
HTML document, ASCII text, with very long lines (404)
Size
424 B (424 bytes)
Hash
822493f1033d2cb7da4c1801b2831eb3
806a95f8fa80dd66fa0d8bac3b3eacb51a53c984
580adbaec3fe4ef139a15c68104483480036815fba3db58d9b02b6b0de4b51fe

HTTP Headers

GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQwkNGpB9wcuSLErDpTaAVOsIj5ygQGX9w2c2wGENSV5DWrwkjHYd8zepy7muMWQ4HpnFkdOtw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:arU8zX4VqGGd9PcQxgUGCn5nUGh2FA:iUgHBSL8iKRsdnWO;Path=/;Expires=Mon, 04-May-2026 21:54:08 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 21:54:08 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQw6UuUwazCC2VZrmFlFc23sodsx5D2VNJoVnBEk3Dlfodd7n-xtEeTOC2DNWGI8wWvPJYCckA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-15820504%3A1714859648705967&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-hYSq-yDYlbBRUYnQkvyOHA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 424
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

js.wpushsdk.com/npc/sdk/wpu/ipnpush.m.js

45.133.44.52

200 OK

49 kB

URL GET HTTP/2
js.wpushsdk.com/npc/sdk/wpu/ipnpush.m.js
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectjs.wpushsdk.com
Fingerprint79:0D:66:14:F6:A5:38:F8:56:11:BB:D8:90:A0:BB:AD:89:47:0E:2B
ValidityTue, 12 Mar 2024 05:00:39 GMT - Mon, 10 Jun 2024 05:00:38 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
49 kB (48964 bytes)
Hash
83edf6cc124ab60db188ee1c10020270
bcbb00539dbdda4e9c50f56f9eb454e48f896a4d
7b20ab5b863f8b7a43d6a12727ee6cd30e6e58ca60f2f248d8f57b82b3182afa

HTTP Headers

GET /npc/sdk/wpu/ipnpush.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 24 Apr 2024 09:09:17 GMT
etag: W/"6628cc3d-29192"
content-encoding: gzip
expires: Sat, 04 May 2024 21:59:07 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

awpya.com/in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=X9RZuI4ezDE4ONxY7Eh0hgbzo-5d8AjMDS4vhsygqK8wLn9xlORcawu-6GBYOm-4yB8HmUgFuHuxpiwDoeBVgg6SymAEjEQ35En0sgfFFXcCsODq38i_-38pm9KzcCSJCLEL9EtY9i3-nAdNHcWf9YgqICv1ejcLg9TOM-QhCp5dWSeMjA&ext_cid=0&px_id=413058&min_cpm=0.050315965335305884&out_id=1&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.006030058675195823&cpm=0&verify_hash=b413b38a436a61219c7051b369a8a35b&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=0,114,20,27,108&need_redirect_show=0&applied_features=yfs,yf,coef_090,main-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=63a23d3a-4efd-45ad-b132-e540868e6586&prev_step_diff=756

168.119.25.102

200 OK

0 B

URL GET HTTP/2
awpya.com/in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=X9RZuI4ezDE4ONxY7Eh0hgbzo-5d8AjMDS4vhsygqK8wLn9xlORcawu-6GBYOm-4yB8HmUgFuHuxpiwDoeBVgg6SymAEjEQ35En0sgfFFXcCsODq38i_-38pm9KzcCSJCLEL9EtY9i3-nAdNHcWf9YgqICv1ejcLg9TOM-QhCp5dWSeMjA&ext_cid=0&px_id=413058&min_cpm=0.050315965335305884&out_id=1&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.006030058675195823&cpm=0&verify_hash=b413b38a436a61219c7051b369a8a35b&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=0,114,20,27,108&need_redirect_show=0&applied_features=yfs,yf,coef_090,main-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=63a23d3a-4efd-45ad-b132-e540868e6586&prev_step_diff=756
IP
168.119.25.102:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=X9RZuI4ezDE4ONxY7Eh0hgbzo-5d8AjMDS4vhsygqK8wLn9xlORcawu-6GBYOm-4yB8HmUgFuHuxpiwDoeBVgg6SymAEjEQ35En0sgfFFXcCsODq38i_-38pm9KzcCSJCLEL9EtY9i3-nAdNHcWf9YgqICv1ejcLg9TOM-QhCp5dWSeMjA&ext_cid=0&px_id=413058&min_cpm=0.050315965335305884&out_id=1&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.006030058675195823&cpm=0&verify_hash=b413b38a436a61219c7051b369a8a35b&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=0,114,20,27,108&need_redirect_show=0&applied_features=yfs,yf,coef_090,main-skins-settings&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=63a23d3a-4efd-45ad-b132-e540868e6586&prev_step_diff=756 HTTP/1.1
Host: awpya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 May 2024 21:54:09 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

awpya.com/in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=uyl0nB4hw2S85B-cUJS0-9RJ_HyHnIgxPLszwaI-I0vBBTnKOa9CmP7-T5mVgJBjDemyUuUqfm78DlZhALJCj6suoXsjro0raOpu0IXZh1CIOzN4MVXw3MOG9NRIpkVOVfpNl6n45ezsCKedHOpUZQnVozRLnIdqSeX0BAMTybWugWMQYw&ext_cid=0&px_id=413058&min_cpm=0.03210351079797&out_id=0&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0038474081238724766&cpm=0&verify_hash=30c7ce4f6e9ad6de00a1cba2a67f55c3&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=114,20,27,108,0&need_redirect_show=0&applied_features=coef_090,main-skins-settings,yfs,yf&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=fbe265a0-656f-4c98-adf3-503a0ed211e8&prev_step_diff=756

168.119.25.102

200 OK

0 B

URL GET HTTP/2
awpya.com/in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=uyl0nB4hw2S85B-cUJS0-9RJ_HyHnIgxPLszwaI-I0vBBTnKOa9CmP7-T5mVgJBjDemyUuUqfm78DlZhALJCj6suoXsjro0raOpu0IXZh1CIOzN4MVXw3MOG9NRIpkVOVfpNl6n45ezsCKedHOpUZQnVozRLnIdqSeX0BAMTybWugWMQYw&ext_cid=0&px_id=413058&min_cpm=0.03210351079797&out_id=0&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0038474081238724766&cpm=0&verify_hash=30c7ce4f6e9ad6de00a1cba2a67f55c3&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=114,20,27,108,0&need_redirect_show=0&applied_features=coef_090,main-skins-settings,yfs,yf&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=fbe265a0-656f-4c98-adf3-503a0ed211e8&prev_step_diff=756
IP
168.119.25.102:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectnotification.tubecup.net
Fingerprint04:18:87:3E:DE:60:E2:78:66:0A:24:6F:E5:3B:42:79:5B:AC:40:20
ValidityThu, 18 Apr 2024 11:21:02 GMT - Wed, 17 Jul 2024 11:21:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /in/show/?tag_ab=b&site_id=31413058&adblock=0&testab=2&auction_host=apply&mm=0&yc=0&render_type=mq&pr=&banner_width=300&banner_height=100&user_keywords=&device_theme=light&v2_track=0&v2=0&conditions=all,dch_ip,tz_offset&ssp=3963&page=https%3A%2F%2Fdavalka.click%2F&refdom=davalka.click&auction_time=1714859648&subid=2098604473&sid=510437173&tcid=0&ver=7.282.0-b&ver_c=&spot_id=413058&utm_source=&utm_medium=&utm_campaign=&utm_content=&created_at=2024-05-04&iabcat=IAB25-3&keywords=adult&user_fp=5233951268228228042&score=74.91862244702031&durl=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&is_cpm=0&resp_type=&crid=&crtid=b0681ff5c1739e7f8bdbb8527f77d810&url=https%3A%2F%2Fkts.dasdaily.com%2Fin%2F1546%2F%3Fad_sub%3D2098604473%26spot_id%3D413058%26is_adult%3D1%26p%3Dhttps%253A%252F%252Fdavalka.click%252F%26idzone%3D0%26sid%3D1546&icons=uyl0nB4hw2S85B-cUJS0-9RJ_HyHnIgxPLszwaI-I0vBBTnKOa9CmP7-T5mVgJBjDemyUuUqfm78DlZhALJCj6suoXsjro0raOpu0IXZh1CIOzN4MVXw3MOG9NRIpkVOVfpNl6n45ezsCKedHOpUZQnVozRLnIdqSeX0BAMTybWugWMQYw&ext_cid=0&px_id=413058&min_cpm=0.03210351079797&out_id=0&campaign_type=pop-default&aid=0&cid=2957&uniq=&mid=3610017062822719286&skin_id=25&vertical_id=0&skin_test=0&from_cache=0&ecpm=0.0038474081238724766&cpm=0&verify_hash=30c7ce4f6e9ad6de00a1cba2a67f55c3&is_native=4&real_bid=0.0002785402221557955&original_bid_usd=0.002324193&original_bid=0.002324193&exp=0&placement_type_id=0&ua_mismatch=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0&ip_mismatch=91.90.42.154&geo=NO&carrier=-&label_ids=114,20,27,108,0&need_redirect_show=0&applied_features=coef_090,main-skins-settings,yfs,yf&show_count=1&expiration_timestamp=0&image_url=https%3A%2F%2Fstatic.bookmsg.com%2Fcreatives%2FSG%2FSG_083be47dfc3e28c9a68305b76181a5033bc45790.webp&site=native-push-adult&price=0.002324193&hostname=auc-inpage-hz-1-b&auc_type=1&pop_type=1&site_id64=&interest_vertical_ids=&mo=&ve=&timezone_olson=UTC&topics=&historical_keywords=&pop_cpc=0.000002324193&ext_campaign_id_str=&pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=fbe265a0-656f-4c98-adf3-503a0ed211e8&prev_step_diff=756 HTTP/1.1
Host: awpya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 04 May 2024 21:54:09 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=4fddea5d-6218-4288-b7e1-26b1f0db8c23&prev_step_diff=756

45.133.44.25

200 OK

486 B

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=4fddea5d-6218-4288-b7e1-26b1f0db8c23&prev_step_diff=756
IP
45.133.44.25:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp
Size
486 B (486 bytes)
Hash
ceeb4e8840c24621c0e0352b42b38a5b
03cbceb0134a39267014595938705e2916580644
50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&mlc=1&st=0.03&cpa=4fddea5d-6218-4288-b7e1-26b1f0db8c23&prev_step_diff=756 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:09 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 21:54:09 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp

45.133.44.25

200 OK

1.1 kB

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp
IP
45.133.44.25:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1066 bytes)
Hash
2a11e13b2bd67bb9a6cb347d7c73df13
b85460a33f9b229f42c08a6a94ae433a4d5c32ab
1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:09 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 21:54:09 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=3e314fa5-6611-46a2-98e9-2657de1ce19d&prev_step_diff=755

45.133.44.25

200 OK

486 B

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=3e314fa5-6611-46a2-98e9-2657de1ce19d&prev_step_diff=755
IP
45.133.44.25:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp
Size
486 B (486 bytes)
Hash
ceeb4e8840c24621c0e0352b42b38a5b
03cbceb0134a39267014595938705e2916580644
50cb77ae9715629235f102dd53a68559df1b64416f71179dbb4aa942725790b3

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790_icon.webp?pattern1=0&pattern2=0&pattern3=0&pattern4=0&pattern5=0&format=compact2-view-t_l-body&mlf=1&st=0.03&cpa=3e314fa5-6611-46a2-98e9-2657de1ce19d&prev_step_diff=755 HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:09 GMT
content-type: image/webp
content-length: 486
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-1e6"
expires: Sun, 04 May 2025 21:54:09 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp

45.133.44.25

200 OK

1.1 kB

URL GET HTTP/2
static.bookmsg.com/creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp
IP
45.133.44.25:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectstatic.bookmsg.com
FingerprintD1:F7:45:48:1F:97:95:82:21:67:D7:E5:0D:16:FA:F3:6C:7C:97:76
ValidityFri, 05 Apr 2024 03:01:07 GMT - Thu, 04 Jul 2024 03:01:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 360x240, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.1 kB (1066 bytes)
Hash
2a11e13b2bd67bb9a6cb347d7c73df13
b85460a33f9b229f42c08a6a94ae433a4d5c32ab
1d0d6b5176d6a48b3042a107f929bbfcefd4a057273ac488bbb7f7affd909b56

HTTP Headers

GET /creatives/SG/SG_083be47dfc3e28c9a68305b76181a5033bc45790.webp HTTP/1.1
Host: static.bookmsg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:09 GMT
content-type: image/webp
content-length: 1066
server: nginx/1.24.0
last-modified: Fri, 08 Dec 2023 10:18:03 GMT
etag: "6572ed5b-42a"
expires: Sun, 04 May 2025 21:54:09 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

davalka.click/static/css/main.css

109.206.176.250

200 OK

116 kB

URL GET HTTP/2
davalka.click/static/css/main.css
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
116 kB (115606 bytes)
Hash
9dce0ce22577cab431e5d71827027425
cd871c3f66926b966da26fb2ff58f0f0b625daa9
40d0edb82638a0b6681d7f7d20f16fbba09a372c906342357edcad16b52fed01

HTTP Headers

GET /static/css/main.css HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: text/css
last-modified: Tue, 13 Jul 2021 07:15:00 GMT
vary: Accept-Encoding
etag: W/"60ed3d74-1c396"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
content-encoding: gzip
X-Firefox-Spdy: h2

davalka.click/static/js/main.js?v=1

109.206.176.250

200 OK

239 kB

URL GET HTTP/2
davalka.click/static/js/main.js?v=1
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type

Size
239 kB (238848 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/js/main.js?v=1 HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: application/javascript
last-modified: Tue, 13 Jul 2021 07:15:01 GMT
vary: Accept-Encoding
etag: W/"60ed3d75-3a500"
expires: Mon, 03 Jun 2024 21:54:04 GMT
pragma: public
cache-control: max-age=2592000, public
content-encoding: gzip
X-Firefox-Spdy: h2

js.wpadmngr.com/static/adManager.m.js

45.133.44.52

200 OK

109 kB

URL GET HTTP/2
js.wpadmngr.com/static/adManager.m.js
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectjs.wpadmngr.com
Fingerprint60:8B:32:7F:ED:77:26:33:0E:F0:C1:0F:02:66:F5:DB:C6:0D:1F:70
ValidityMon, 11 Mar 2024 04:00:58 GMT - Sun, 09 Jun 2024 04:00:57 GMT

File type

Size
109 kB (109340 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 23 Apr 2024 09:45:19 GMT
etag: W/"6627832f-1ab1c"
content-encoding: gzip
expires: Sat, 04 May 2024 21:59:07 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

js.wpushsdk.com/skins/ipmain.m.js

45.133.44.52

200 OK

470 kB

URL GET HTTP/2
js.wpushsdk.com/skins/ipmain.m.js
IP
45.133.44.52:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectjs.wpushsdk.com
Fingerprint79:0D:66:14:F6:A5:38:F8:56:11:BB:D8:90:A0:BB:AD:89:47:0E:2B
ValidityTue, 12 Mar 2024 05:00:39 GMT - Mon, 10 Jun 2024 05:00:38 GMT

File type

Size
470 kB (470386 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /skins/ipmain.m.js HTTP/1.1
Host: js.wpushsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:08 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 15 Apr 2024 13:02:16 GMT
etag: W/"661d2558-72d72"
content-encoding: gzip
expires: Sat, 04 May 2024 21:59:08 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2

davalka.click/

109.206.176.250

200 OK

89 kB

URL User Request GET HTTP/2
davalka.click/
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type

Size
89 kB (88851 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:04 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.2.15
set-cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-request-id: d5a8ee97629edcfd6b60bff0a97149a4
content-encoding: gzip
X-Firefox-Spdy: h2

storage.multstorage.com/log/count.html

104.21.30.242

200 OK

882 B

URL GET HTTP/2
storage.multstorage.com/log/count.html
IP
104.21.30.242:443
ASN
#13335 CLOUDFLARENET

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subjectmultstorage.com
Fingerprint63:F0:24:29:21:22:E5:42:33:61:B5:20:05:1B:EF:36:81:F5:7B:0A
ValiditySun, 17 Mar 2024 08:38:54 GMT - Sat, 15 Jun 2024 08:38:53 GMT

File type
HTML document, ASCII text, with very long lines (919), with no line terminators
Size
882 B (882 bytes)
Hash
053b1fe641da8057571d40ebaf1624ab
09b2648b7d08c84621298f0b939cea5170a65022
6606334874a3edb8295831f41d3684433e4553ffe0a72e58c90926e00f39c6a4

HTTP Headers

GET /log/count.html HTTP/1.1
Host: storage.multstorage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:54:07 GMT
content-type: text/html
last-modified: Mon, 18 Sep 2023 14:39:06 GMT
vary: Accept-Encoding
x-request-id: 578a748e7b6ca0f8a143ae0c6f80b762
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m9Lto0Sljk5AnbfxMtFfsuWHeOBZhw93QjpiFsxhMwYo%2Fp5wxvjcPaLqBxeOdggkKCDabplI5Y9BRkOax7EugHLWv9QD8OOfhQBFk8km46nymkQlH1E1JY88mdEy8knjqa4jjkPz%2BtfNPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ebba3efd2b0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&display=swap

142.250.74.106

200 OK

2.8 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=PT+Sans:wght@400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (2854), with no line terminators
Size
2.8 kB (2782 bytes)
Hash
cc3eb28a6689166723d4997edb067946
e16920c9ff4da91c836339e54c5e6f3a93e0cf86
a46b6ce277c774a91d935356a63ba48171973202487bc8a2debb53759c907c0a

HTTP Headers

GET /css2?family=PT+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 21:54:06 GMT
date: Sat, 04 May 2024 21:54:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

davalka.click/static/img/i-search.svg

109.206.176.250

200 OK

877 B

URL GET HTTP/2
davalka.click/static/img/i-search.svg
IP
109.206.176.250:443
ASN
#50245 Serverel Inc.

Requested by
https://davalka.click/
Certificate
IssuerLet's Encrypt
Subjectdavalka.click
Fingerprint0F:0E:1E:63:04:F2:D7:24:B8:81:52:F4:55:5D:66:09:F5:F1:8C:C8
ValidityWed, 03 Apr 2024 14:42:54 GMT - Tue, 02 Jul 2024 14:42:53 GMT

File type
SVG Scalable Vector Graphics image
Size
877 B (877 bytes)
Hash
33a17a7b7bbd230fca901b703e8683f7
bf69d97ff2bd71a8b4205983c5d56f2f778dbd1d
809bbd1d381a1f13af37284a0dfd26d1de937937ecccc0ff8b329b38b3c129ae

HTTP Headers

GET /static/img/i-search.svg HTTP/1.1
Host: davalka.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://davalka.click/static/css/main.css
Cookie: PHPSESSID=e93fcc6f92ef5eaad04bc769c63394b9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.23.1
date: Sat, 04 May 2024 21:54:06 GMT
content-type: image/svg+xml
content-length: 877
last-modified: Tue, 13 Jul 2021 07:15:03 GMT
etag: "60ed3d77-36d"
expires: Mon, 03 Jun 2024 21:54:06 GMT
pragma: public
cache-control: max-age=2592000, public
accept-ranges: bytes
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQw6UuUwazCC2VZrmFlFc23sodsx5D2VNJoVnBEk3Dlfodd7n-xtEeTOC2DNWGI8wWvPJYCckA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-15820504%3A1714859648705967&theme=mn&ddm=0

173.194.221.84

403 Forbidden

0 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQw6UuUwazCC2VZrmFlFc23sodsx5D2VNJoVnBEk3Dlfodd7n-xtEeTOC2DNWGI8wWvPJYCckA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-15820504%3A1714859648705967&theme=mn&ddm=0
IP
173.194.221.84:443
ASN
#15169 GOOGLE

Requested by
https://davalka.click/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQw6UuUwazCC2VZrmFlFc23sodsx5D2VNJoVnBEk3Dlfodd7n-xtEeTOC2DNWGI8wWvPJYCckA&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-15820504%3A1714859648705967&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 21:54:08 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: script-src 'nonce-jwANSDC3PtPe9UM8ycr1Yw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML