s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe
51.75.52.14301 Moved Permanently 185 B URL HTTP/1.1 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe
IP 51.75.52.14:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Fri, 31 Mar 2023 09:06:56 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Fri, 31 Mar 2023 10:24:19 GMT
Date: Fri, 31 Mar 2023 09:06:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6702
Expires: Fri, 31 Mar 2023 10:58:38 GMT
Date: Fri, 31 Mar 2023 09:06:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 08:28:22 GMT
content-type: application/json
age: 2314
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5051
Expires: Fri, 31 Mar 2023 10:31:07 GMT
Date: Fri, 31 Mar 2023 09:06:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lsBpCzHlvoRHmRsqbX57jJhaDz4EovCoJt/TeJTTC+UWEm6dgQJ2ffUGpI9/yFFe6bZfVBzLqHU=
x-amz-request-id: 20KBP4WNEE9S6439
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 09:03:17 GMT
age: 219
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2afe0f991030be6b16b542a257da0aae
f268790e113eb99c0a9f8a5304353a2762dce891
e561b7b4836837923b7112705a505df86e643948215a3b81e6957e39dc400e0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E561B7B4836837923B7112705A505DF86E643948215A3B81E6957E39DC400E0E"
Last-Modified: Wed, 29 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18381
Expires: Fri, 31 Mar 2023 14:13:17 GMT
Date: Fri, 31 Mar 2023 09:06:56 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 09:06:56 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9989
Expires: Fri, 31 Mar 2023 11:53:25 GMT
Date: Fri, 31 Mar 2023 09:06:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 08:17:26 GMT
age: 2970
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe
51.75.52.14302 Found 16 kB URL HTTP/2 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe
IP 51.75.52.14:0
File type gzip compressed data, from Unix\012- data
Hash 3ec40686d86de8481a776d06b8ea7cb9
2e07e3204d91459b9c701678053940e9a368b2f6
cb2e9d7d7a8551c22b2504151fb681eddff33d93ab602c096fdc68aa9145402b
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/63beb4fe20a9f/soft/dfiles/ru/win/ext2fsd/328985/ext2fsd-0.69.1035-09.14.exe HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Fri, 31 Mar 2023 09:06:56 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/uTorrent.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/uTorrent.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash d8b3a7cb134c0c01d8b730eb52efa445
e5f8e04f40a7149aa1be7256634f86cf370ab7af
8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1477
last-modified: Mon, 13 Mar 2023 20:44:00 GMT
etag: "640f8b10-5c5"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash de4422d577c482189dfe5966c7362737
473e997d0ded39d3ccb1c54f874576c71cc1405f
ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1438
last-modified: Wed, 29 Mar 2023 05:24:09 GMT
etag: "6423cb79-59e"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Discord.gif
54.36.106.111200 OK 946 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Discord.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 863bd8be9dbe3fc6ea1c2ebe5e17b0f2
0b8090fa9037490c85fa5bc389e9f89a83540862
0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 946
last-modified: Sat, 18 Feb 2023 10:50:06 GMT
etag: "63f0ad5e-3b2"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zoom.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zoom.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f016ef461c4b5d433f2b75874a3fa9f0
84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb
ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1713
last-modified: Mon, 20 Mar 2023 18:42:22 GMT
etag: "6418a90e-6b1"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zona.gif
54.36.106.111200 OK 485 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zona.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash af31d9cab2614849c9f71f67744d5fe3
51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec
885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MediaGet.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MediaGet.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash b69d7ccb1c036103aaf41086187b37fa
3cec81950db96a58ac7da7a216777c18f960ce0a
2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1589
last-modified: Wed, 01 Feb 2023 20:26:42 GMT
etag: "63dacb02-635"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/WinRAR.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/WinRAR.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash de072b93dbf65068ccfc9a91e722ae90
51e63f9279c737c782e9fce4d1991a2286eb1b65
5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1484
last-modified: Mon, 20 Feb 2023 18:29:47 GMT
etag: "63f3bc1b-5cc"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/CCleaner.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/CCleaner.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 28ecdadc6ce55c1c52937fe69634148f
53a1e07d37c4f4e940dcf928f071e1e9698cef5c
56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1626
last-modified: Wed, 22 Mar 2023 11:16:31 GMT
etag: "641ae38f-65a"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Steam.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Steam.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 86c651e4629614e6c3d484025d31ec96
83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033
e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1464
last-modified: Sun, 26 Mar 2023 23:21:52 GMT
etag: "6420d390-5b8"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Rufus.gif
54.36.106.111200 OK 860 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Rufus.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 8c927578b093422fe11e609f10c18aca
1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a
13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 860
last-modified: Mon, 27 Mar 2023 18:41:20 GMT
etag: "6421e350-35c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f31881c998b0af01243f70cb5a1aedfc
56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7
ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1689
last-modified: Sat, 18 Feb 2023 23:18:15 GMT
etag: "63f15cb7-699"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/7-Zip.gif
54.36.106.111200 OK 401 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/7-Zip.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 769824aa176b2636b1640c3d60afb524
655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9
f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 401
last-modified: Wed, 08 Feb 2023 02:58:19 GMT
etag: "63e30fcb-191"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
54.36.106.111200 OK 929 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 9833effb5dd42a027e756f796ddf4cfe
9e99332744c5484e396a029a9d34bf957dff3f73
2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 929
last-modified: Thu, 23 Mar 2023 11:59:58 GMT
etag: "641c3f3e-3a1"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 475687f8d9f500bd84aff0051af75dc0
747eb724c7cd54c9cc583ec2eb034a04accb7cef
4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1023
last-modified: Sat, 18 Mar 2023 23:58:11 GMT
etag: "64165013-3ff"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
54.36.106.111200 OK 964 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 11c35a7e206514cf071c7ad75efee9a6
946062bc95112ae2b7e73a5e33d0a2884d983e34
bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 964
last-modified: Fri, 24 Mar 2023 04:24:37 GMT
etag: "641d2605-3c4"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 84cfb69793f19552fdda4e7ff93ff571
b74176c770ae2a5e7591cf0c220c2031394e343a
c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1014
last-modified: Fri, 24 Mar 2023 04:24:11 GMT
etag: "641d25eb-3f6"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/XnConvert.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/XnConvert.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash fe58ff72ef0ec7752c420f75ac4d2edd
198533a6571f12121d6676111e23e935870747f7
e4df8cc7582683bd58e3b3da800aa1bd7551f6e2a85ec9d578b615e59eb77208
GET /images/ru/win/icons/XnConvert.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1666
last-modified: Thu, 30 Mar 2023 20:12:14 GMT
etag: "6425ed1e-682"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RemotelyAnywhere.gif
54.36.106.111200 OK 932 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RemotelyAnywhere.gif
IP 54.36.106.111:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash c34c19d66ce56ec72ddfb963e87610b1
7b0786d1c1f5eb30bc2ba2bec23fb1adb6e92e9b
df5caca195e6c8773a409b3b6ad4ccd1608c1d0d0cffd782461d7376360cac80
GET /images/ru/win/icons/RemotelyAnywhere.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 932
last-modified: Thu, 30 Mar 2023 20:02:21 GMT
etag: "6425eacd-3a4"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/LibreOffice.gif
54.36.106.111200 OK 511 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/LibreOffice.gif
IP 54.36.106.111:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 03d0e58fa808351209397c48d7036d0b
4d085e9aa37da6096f687deb89ee5c0bb7cd7a53
8e20c999ea0fedb4560c1594570588cc6deaeddd7a64e6efda7b295adfe49894
GET /images/ru/win/icons/LibreOffice.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 511
last-modified: Thu, 30 Mar 2023 19:59:45 GMT
etag: "6425ea31-1ff"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/iTunes.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/iTunes.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash efb394b0c27a94be4e7ee7b44ad3325f
df6a3b6cbdc4ab682c77057e19e7070998f91334
cd2fd9b131c01ef48bf1d83ce067fad6334bb3dc9cec3ebe1d163c315af6cbe5
GET /images/ru/win/icons/iTunes.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1522
last-modified: Thu, 30 Mar 2023 20:06:29 GMT
etag: "6425ebc5-5f2"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Spotify.gif
54.36.106.111200 OK 671 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Spotify.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash e965d87771ed1206c689899f4f99d524
ea474001aaae02a9967d4a2875d8d94beb03ddb7
83f98234a7f1225dbc666613a1083ffeb982c25a7b0db8bd971e67ca7154dd28
GET /images/ru/win/icons/Spotify.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 671
last-modified: Thu, 30 Mar 2023 19:57:49 GMT
etag: "6425e9bd-29f"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/360-Total-Security-Essential.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/360-Total-Security-Essential.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f8ce072a85ba3538b647c2c208f17659
6353a142d8b0e71f66408c273503abf00430d038
94862ab4ff5c52edd7bc7202f537705a4f685e0ae753dff3722ae36e43265ee4
GET /images/ru/win/icons/360-Total-Security-Essential.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1530
last-modified: Thu, 30 Mar 2023 19:56:14 GMT
etag: "6425e95e-5fa"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/360-Total-Security.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/360-Total-Security.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 31 x 32\012- data
Hash aac264a7e6b982f054c9842355c2fe0e
5c4c61af728dc63ad314882de8ce4f127176d3ba
536916c3e2cc16f40871e92f1549860a37a646f0133c5126e56588b5ed4033d9
GET /images/ru/win/icons/360-Total-Security.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1539
last-modified: Thu, 30 Mar 2023 19:54:32 GMT
etag: "6425e8f8-603"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RegRun-Reanimator.gif
54.36.106.111200 OK 381 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RegRun-Reanimator.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 600b17ca289990e43c9c3370e3570ffb
37e943057392117db7e303ec293826ff298c0abd
ef53bad13a8775d7e181b884c0e6cbc29b05a1789ce0cc7a769bc9a3cd0939ca
GET /images/ru/win/icons/RegRun-Reanimator.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 381
last-modified: Thu, 30 Mar 2023 19:52:44 GMT
etag: "6425e88c-17d"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Atlantis-Word-Processor.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Atlantis-Word-Processor.gif
IP 54.36.106.111:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash d48d3abf231dc35661567f8f936d9016
003079dc7d1d6b1120ecd5a5b9c189d5c99e0a98
44680f38c8144d36a7982e9f6a07d8235b9515e1d1d6157a405cfccc25929081
GET /images/ru/win/icons/Atlantis-Word-Processor.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1452
last-modified: Thu, 30 Mar 2023 19:50:28 GMT
etag: "6425e804-5ac"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite.gif
54.36.106.111200 OK 1.3 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 5029b1cb03fc7ca791babc7eaade2510
52f33094f118e63a1987ef9c0bd142441e6cf97d
b972ce00e1e3476c2c7d57ce9850faff225f719f55e809d692db2bb73fdf94d1
GET /images/ru/win/icons/RegRun-Security-Suite.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1333
last-modified: Thu, 30 Mar 2023 19:43:26 GMT
etag: "6425e65e-535"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite-Pro.gif
54.36.106.111200 OK 1.3 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite-Pro.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 5029b1cb03fc7ca791babc7eaade2510
52f33094f118e63a1987ef9c0bd142441e6cf97d
b972ce00e1e3476c2c7d57ce9850faff225f719f55e809d692db2bb73fdf94d1
GET /images/ru/win/icons/RegRun-Security-Suite-Pro.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1333
last-modified: Thu, 30 Mar 2023 19:41:37 GMT
etag: "6425e5f1-535"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite-Platinum.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RegRun-Security-Suite-Platinum.gif
IP 54.36.106.111:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 1bb4df54b7d1de0a5567a7921977dae9
b5fe4fcbba9d70db69c69915d5b2fb2d73ed7116
5253491234201c32e67c1463020bc9c8a8b1937647ed432d43c9b4f04024b050
GET /images/ru/win/icons/RegRun-Security-Suite-Platinum.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1362
last-modified: Thu, 30 Mar 2023 19:39:48 GMT
etag: "6425e584-552"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/opencl-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/opencl-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash e7724000d9d7c18d1897dfad0e8b6d98
0ae36d901528a8d17c6c9b717d12de82cde7c56b
be12c1218999170fcd6cf757e92215f938d7e806d14872e07797137da2fb7aee
GET /images/ru/win/icons/opencl-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1641
last-modified: Thu, 30 Mar 2023 18:31:14 GMT
etag: "6425d572-669"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/msvcp120-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/msvcp120-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash a4183741e8121bd31360de18b81e1793
b66a25a85176e9d2b0087dc4e1d540b77c384f52
ce1697c15cadec6ddd0ba420b299f2d0ba3b36c53cdf785ded39226b6007853b
GET /images/ru/win/icons/msvcp120-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Thu, 30 Mar 2023 03:43:55 GMT
etag: "6425057b-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/x3daudio1-7-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/x3daudio1-7-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash a4183741e8121bd31360de18b81e1793
b66a25a85176e9d2b0087dc4e1d540b77c384f52
ce1697c15cadec6ddd0ba420b299f2d0ba3b36c53cdf785ded39226b6007853b
GET /images/ru/win/icons/x3daudio1-7-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Tue, 28 Mar 2023 17:40:47 GMT
etag: "6423269f-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/uplay-r164-dll.gif
54.36.106.111200 OK 847 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/uplay-r164-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 534384c7f9d4da4ecaf3f22fdbfba4df
378608f54418bc49735032cb736f93549126b3c8
8d0f16564e418a46e731f606c779f706a57f4c7fa8f3027a9c7d4e9d367479db
GET /images/ru/win/icons/uplay-r164-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 847
last-modified: Tue, 28 Mar 2023 01:48:33 GMT
etag: "64224771-34f"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/PhysXLoader-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/PhysXLoader-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash aab6537e853c0873124b9f51ee7a279b
76f4fc915e7ca47c8f0b6ae39a75b0eb5781d0be
b0a4104d99cc471a91edb3d89357b8ddfcac7c4ae362a08d820de9e1200d42ca
GET /images/ru/win/icons/PhysXLoader-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1554
last-modified: Tue, 28 Mar 2023 01:41:34 GMT
etag: "642245ce-612"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/binkw32-dll.gif
54.36.106.111200 OK 847 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/binkw32-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6c314f4e4edabb4413e2c124eed950b4
026da3343600aface09fa63a2c2e445e2465a060
14de481df0ce9fa1730b86278cf16cd726a6ed84d3083f9e296c3c4fa17c3663
GET /images/ru/win/icons/binkw32-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 847
last-modified: Sun, 26 Mar 2023 03:54:01 GMT
etag: "641fc1d9-34f"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/vulkan-1-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/vulkan-1-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 77a7c93166713f7b7b5e619153e034eb
e93547147a65fdc925868e8361909e5e959a8e25
f0f1cd7f9c64739fb4b089fc61ac322ba7ff137cf640745d8099235fd8ff96ef
GET /images/ru/win/icons/vulkan-1-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Sat, 25 Mar 2023 18:53:27 GMT
etag: "641f4327-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/d3d12-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/d3d12-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash a4183741e8121bd31360de18b81e1793
b66a25a85176e9d2b0087dc4e1d540b77c384f52
ce1697c15cadec6ddd0ba420b299f2d0ba3b36c53cdf785ded39226b6007853b
GET /images/ru/win/icons/d3d12-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Fri, 24 Mar 2023 23:59:04 GMT
etag: "641e3948-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Openal32-dll.gif
54.36.106.111200 OK 987 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Openal32-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash de4c6af67fb65b78d01b97749bedf7fd
dca4deb8eb92dd200bf4dde176c2910372c29406
ec02167e036424ab6a5b5fce075e4f7884d120b5455439a5295ce41f6c6d87b3
GET /images/ru/win/icons/Openal32-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 987
last-modified: Thu, 23 Mar 2023 17:40:48 GMT
etag: "641c8f20-3db"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/D3DCompiler-43-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/D3DCompiler-43-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 77a7c93166713f7b7b5e619153e034eb
e93547147a65fdc925868e8361909e5e959a8e25
f0f1cd7f9c64739fb4b089fc61ac322ba7ff137cf640745d8099235fd8ff96ef
GET /images/ru/win/icons/D3DCompiler-43-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Thu, 23 Mar 2023 19:05:27 GMT
etag: "641ca2f7-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/api-ms-win-crt-runtime-l1-1-0-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/api-ms-win-crt-runtime-l1-1-0-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 77a7c93166713f7b7b5e619153e034eb
e93547147a65fdc925868e8361909e5e959a8e25
f0f1cd7f9c64739fb4b089fc61ac322ba7ff137cf640745d8099235fd8ff96ef
GET /images/ru/win/icons/api-ms-win-crt-runtime-l1-1-0-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Thu, 23 Mar 2023 14:54:33 GMT
etag: "641c6829-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Gutil140-dll.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Gutil140-dll.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash a4183741e8121bd31360de18b81e1793
b66a25a85176e9d2b0087dc4e1d540b77c384f52
ce1697c15cadec6ddd0ba420b299f2d0ba3b36c53cdf785ded39226b6007853b
GET /images/ru/win/icons/Gutil140-dll.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/gif
content-length: 1644
last-modified: Wed, 22 Mar 2023 17:33:02 GMT
etag: "641b3bce-66c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/6392_small.jpg
54.36.106.111200 OK 14 kB URL HTTP/2 games.mydiv.net/images/screens/6392_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash eedac1f69a8b43eca022cb4be33a32ed
22af7487647ab4dfa89069dd71bb6c39c61fcbbf
90e556af2b138b6b0179e989b3d5501b091e91a7a101f3db811113a33373af5c
GET /images/screens/6392_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 14156
last-modified: Tue, 09 Oct 2012 15:13:51 GMT
etag: "50743f2f-374c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
151.101.129.229200 OK 89 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP 151.101.129.229:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash d2ebe4c863a6fcd793b1af7b5abae430
1cc395e96633a0a683951a372388c1a8ce264d8d
61fa26983a099f4886f082c9830738345db83b156c6f2ec651852c678386da0c
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.262.0
x-jsd-version-type: version
etag: W/"34f93-uyWgQ4OqMEayc+Bdz0czFyiAHJ0"
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:06:57 GMT
age: 29210
x-served-by: cache-fra-eddf8230100-FRA, cache-bma1663-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 88767
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash d0141f1d6fc037a4fe1c473172e2d2cd
fc11caa2fa5879fe13a10363c2b6fc8d69028247
f8f1eaa474b5529cb5d89037c11f8a7552fff13d4de1ed4f52ffdac28f37dfe4
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:57 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "6B3287C70C7B06888533D792F1D3DF280D06BE64"
Expires: Fri, 31 Mar 2023 20:00:00 GMT
Last-Modified: Fri, 31 Mar 2023 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1708
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077073ea3efab4-OSL
games.mydiv.net/images/screens/72571_small.jpg
54.36.106.111200 OK 23 kB URL HTTP/2 games.mydiv.net/images/screens/72571_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 920725c0455a326a4a5dba0fd17a4f55
b2767bfd6ac900bbcee07dc2c84aa3c6d4ec2735
21b23c23bb31ef03e3ea613e83f8c6ccad7735b7281105b78ec211ff2010bc71
GET /images/screens/72571_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 22862
last-modified: Sat, 26 Nov 2022 16:27:55 GMT
etag: "63823e8b-594e"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf29feb5d124115ffaf0b00e89ab0309
693d2ad3694d3171af6545ef4758855127b2e669
40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf29feb5d124115ffaf0b00e89ab0309
693d2ad3694d3171af6545ef4758855127b2e669
40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
games.mydiv.net/images/screens/4549_small.jpg
54.36.106.111200 OK 7.9 kB URL HTTP/2 games.mydiv.net/images/screens/4549_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 190x190, components 3\012- data
Hash 88ac0ad9d9659e3422ac8f46ebf7170c
09594ed1df18e45d372847eb6d3675f66b58cfd7
893941430e5ac9fbbfa1a850da3b4b8ad5ddd09819beb08749268cd9f7ba906f
GET /images/screens/4549_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 7857
last-modified: Tue, 06 Mar 2012 19:20:00 GMT
etag: "4f566360-1eb1"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
216.58.211.3200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data
Hash f9f3b19c02acf071e57b965bed8f3b02
3dbfd06b63517d349a70537269e6d4dbe6fcaec5
56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:51 GMT
expires: Sat, 23 Mar 2024 10:27:51 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
age: 599946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
216.58.211.3200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data
Hash 70487f355d22aef7eee8f36bca4d03b8
9ffd6785eeaad33637a9c1be6a0c208f346e134e
d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 09:33:40 GMT
expires: Fri, 29 Mar 2024 09:33:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
age: 84797
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bf29feb5d124115ffaf0b00e89ab0309
693d2ad3694d3171af6545ef4758855127b2e669
40c67d04ae6c3d13fd0a77cf0c804660a5498d0c24425162f8e21c86d9e85eb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
54.36.106.111200 OK 4.9 kB URL HTTP/2 mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
IP 54.36.106.111:0
File type PNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data
Hash e7812d5843d1bdde5f676ec192619596
33f68a6af0085917a61ec1a04ab007dbc0036afe
ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=e24849be52c774f06638
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/png
content-length: 4885
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/70967_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 games.mydiv.net/images/screens/70967_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 9c93289aa0ebc6b600981932653c096a
911493968f11f1b0acdcb68b6e58106ea4f3d465
a8b8823a879930f2c5905437c3c99704d479145709287c602defc1f5b2dcf651
GET /images/screens/70967_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 16071
last-modified: Fri, 14 Oct 2016 11:52:33 GMT
etag: "5800c701-3ec7"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/69355_small.jpg
54.36.106.111200 OK 8.7 kB URL HTTP/2 games.mydiv.net/images/screens/69355_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash da504253ef75615ad9551c23b3224ab3
bcf2ff423726b8fc20e47ba37e279d1caf394298
c9f6c74d478b6789721f4f48f6f5172f5c12bbf1c625f208ad0956e8261b4874
GET /images/screens/69355_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Wed, 29 Jan 2014 07:26:01 GMT
etag: "52e8ad09-21f7"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72698_small.jpg
54.36.106.111200 OK 23 kB URL HTTP/2 games.mydiv.net/images/screens/72698_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 77f4ca6fee2b1367d467dfc6d42d9f99
a009d09a09362198b695a808ec3419a3daa6efa8
74e6bad72444bda083d2bd914cae1b2a7befccf57253cf364ede525e3973d81a
GET /images/screens/72698_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 22596
last-modified: Wed, 15 Mar 2023 07:27:19 GMT
etag: "64117357-5844"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/4531_small.jpg
54.36.106.111200 OK 14 kB URL HTTP/2 games.mydiv.net/images/screens/4531_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 190x190, components 3\012- data
Hash f02f07022c048aeac90fa962f4f77480
fa6bfa497a3b72b030533d4c262305bdb627e3e5
e80e31dab1be724f3e5f69e96ff56de07a2a9abe17ffe0bee99a1feba75f7aa3
GET /images/screens/4531_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 13607
last-modified: Tue, 06 Mar 2012 19:09:47 GMT
etag: "4f5660fb-3527"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/6439_small.jpg
54.36.106.111200 OK 15 kB URL HTTP/2 games.mydiv.net/images/screens/6439_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash e6400224072a9262f7d581665927ebc2
16aa56a12a18f1e8a7e36eaad2c53d467e40d88b
89ea7deff4f3ea65e82101ff4b0c74593fc7fc9a14d43a1500077c9d524cbad8
GET /images/screens/6439_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 15422
last-modified: Tue, 09 Oct 2012 15:15:33 GMT
etag: "50743f95-3c3e"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/6441_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 games.mydiv.net/images/screens/6441_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 94fdf29f2eaadd9857209c3256cd5cb1
085dbc2050f7932604077f3da01d166c6b66d045
1d66abe0bbe432abc904a27a37532e0b6be5d5b6f77e24bee1190a87fa685910
GET /images/screens/6441_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 16240
last-modified: Tue, 09 Oct 2012 15:15:35 GMT
etag: "50743f97-3f70"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28513_small.jpg
54.36.106.111200 OK 6.8 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28513_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash b0ba0ed5f99bbaa3484a31cd719804e8
be40fdd3de8764091e01018d4b151e97cfaf26fa
fc31e83e3c7d3901bd5ec9ddb1ad69ea40a20898be05da6dbcf5c81be978b2aa
GET /images/arts/ru/screens/28513_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 6757
last-modified: Mon, 20 Mar 2023 04:15:44 GMT
etag: "6417ddf0-1a65"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28510_small.jpg
54.36.106.111200 OK 11 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28510_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 98c7d35886835abdb589758329e44a09
abbf5956e3890ae57fd1d7e500a13384b0ea7371
8fd43d8ff860e42b3f94af79926125c139ecb0c288117cadc1a478424bece559
GET /images/arts/ru/screens/28510_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 11084
last-modified: Sun, 12 Mar 2023 10:51:56 GMT
etag: "640daecc-2b4c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28509_small.jpg
54.36.106.111200 OK 50 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28509_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash d266c39d59a7679a7604f53eb3bd7bd4
48eef4fe297e9eea810a568ae3dd0943ce5f2e9d
97ff86d3ba8aea94ec56d7568fff49000ba3e6bfb8847d083fd3554df2c76ec3
GET /images/arts/ru/screens/28509_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 49656
last-modified: Thu, 02 Mar 2023 23:25:29 GMT
etag: "64013069-c1f8"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28508_small.jpg
54.36.106.111200 OK 11 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28508_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 64482fc30b57002a52af5f2cad6c066e
d0c8ced4aee63dea10a2c9b72f171a9319575c49
ee8e96bac0a890c02d4cd62951a92594d9da5b3a828b0ba496b82900222961af
GET /images/arts/ru/screens/28508_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 10908
last-modified: Wed, 01 Mar 2023 01:00:25 GMT
etag: "63fea3a9-2a9c"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/8745_small.jpg
54.36.106.111200 OK 12 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/8745_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 9f8309bcabc3fb0c36537de5e98bf4f9
408702b57e3d1f1c6cb9b64d6dfe806f71869f3c
a019c283eba5493aa503c9c0cedad75228a89715f19ab4dd1d3c2f6fcf2480d7
GET /images/arts/ru/screens/8745_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 11937
last-modified: Thu, 31 Mar 2016 07:39:21 GMT
etag: "56fcd429-2ea1"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28507_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28507_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash c5fb0b4d9a144a0daac00f0d39b26775
bf981462e6a4833496f8792b8936c830324ae7d5
b78b9e68fe31c7612c0c9c1c64f0deab4bc28c6357177ac1ebfef69d9ba8f907
GET /images/arts/ru/screens/28507_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 16079
last-modified: Wed, 15 Feb 2023 16:52:13 GMT
etag: "63ed0dbd-3ecf"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28504_small.jpg
54.36.106.111200 OK 14 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28504_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 9a9f73515f54ab7dd97e0ffd4433f7ed
a7f3ddb1b71abd2dfcf9ec63b9461703502f99fe
7cad59ac7b8e78e6b4c7d1d997dc8b572ee962e9251044b0b78edd351e3149b8
GET /images/arts/ru/screens/28504_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 13474
last-modified: Tue, 07 Feb 2023 17:11:47 GMT
etag: "63e28653-34a2"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28503_small.jpg
54.36.106.111200 OK 3.9 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28503_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 6bdf5d3f3e850e1b21ab105f2f4f2288
fb5695894e1177d718d473db4415b55ce1c08fde
3f48d4343a6e336b819aed476fa0b6908168824d54a7dce8992417a420dcc2e9
GET /images/arts/ru/screens/28503_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 3920
last-modified: Wed, 01 Feb 2023 10:16:35 GMT
etag: "63da3c03-f50"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/7487_small.jpg
54.36.106.111200 OK 13 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/7487_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash a066367bbfe1a63b4270f84f22b6b500
ffe1a653b109df02c551395886540bb4b084884b
a15d5587fa33b8219b72145ea104f3c61ec2a35e5f34913c7f337389e6dbf086
GET /images/arts/ru/screens/7487_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 12661
last-modified: Sat, 17 Nov 2012 13:50:17 GMT
etag: "50a79619-3175"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28490_small.jpg
54.36.106.111200 OK 13 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28490_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 694f97713a7546d460dbbfed09a03c3b
c0394726932a448d1c8c4ee8341e8796a1f33535
a4cbcd590323ec0299b3855861fb054a7b69cbf59c769af05f2f2cb6b4faff22
GET /images/arts/ru/screens/28490_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/jpeg
content-length: 12769
last-modified: Sat, 28 Jan 2023 21:30:29 GMT
etag: "63d593f5-31e1"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
54.36.106.111200 OK 1.8 kB URL HTTP/2 mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
IP 54.36.106.111:0
File type PNG image data, 117 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c539cc4109c4ed80ec05cb5812112d1c
e54ad527d32113957d3c6fbc42f5dee7cf2a15f5
3abcf0a2a296461fb1cf4584d08a2a9afdbd0c0861a7211ab6f53fc64f8fe83a
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/png
content-length: 1770
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 40f69b7188b4d000a466d4cd5e7c413c
83e68bae3c3a99b0203e43d1f3959a7badcf16be
87f10953cf982f85d0c4c85d1167fa94a36bb63573046ac328a485bf597cab71
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:57 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 04 Apr 2023 06:08:45 GMT
ETag: "83e68bae3c3a99b0203e43d1f3959a7badcf16be"
Last-Modified: Fri, 31 Mar 2023 06:08:46 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1148
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0770763c1dfab4-OSL
mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2ejkyzehotb%3Afp%3A1224%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A303321634297%3Ahid%3A575091619%3Az%3A0%3Ai%3A20230331090657%3Aet%3A1680253617%3Ac%3A1%3Arn%3A88732761%3Arqn%3A1%3Au%3A1680253617700816872%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C111%2C225%2C1%2C554%2C0%2C%2C253%2C2%2C%2C%2C%2C1224%3Aco%3A0%3Ans%3A1680253615824%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680253617%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20%E2%80%94%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.250.119302 Found 400 B URL HTTP/2 mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2ejkyzehotb%3Afp%3A1224%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A303321634297%3Ahid%3A575091619%3Az%3A0%3Ai%3A20230331090657%3Aet%3A1680253617%3Ac%3A1%3Arn%3A88732761%3Arqn%3A1%3Au%3A1680253617700816872%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C111%2C225%2C1%2C554%2C0%2C%2C253%2C2%2C%2C%2C%2C1224%3Aco%3A0%3Ans%3A1680253615824%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680253617%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20%E2%80%94%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 47d9a8f7aea6b7ae22e82408a68c5794
200c22b1b30a1e9bddc4202eff19b4d03e6ef2c7
1679635db3016bd4165686d0ee3b905b0dca469e9b64e4382c1d957f68660fe5
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2ejkyzehotb%3Afp%3A1224%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A303321634297%3Ahid%3A575091619%3Az%3A0%3Ai%3A20230331090657%3Aet%3A1680253617%3Ac%3A1%3Arn%3A88732761%3Arqn%3A1%3Au%3A1680253617700816872%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C111%2C225%2C1%2C554%2C0%2C%2C253%2C2%2C%2C%2C%2C1224%3Aco%3A0%3Ans%3A1680253615824%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680253617%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20%E2%80%94%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2ejkyzehotb%3Afp%3A1224%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A303321634297%3Ahid%3A575091619%3Az%3A0%3Ai%3A20230331090657%3Aet%3A1680253617%3Ac%3A1%3Arn%3A88732761%3Arqn%3A1%3Au%3A1680253617700816872%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C111%2C225%2C1%2C554%2C0%2C%2C253%2C2%2C%2C%2C%2C1224%3Aco%3A0%3Ans%3A1680253615824%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680253617%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20%E2%80%94%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 31 Mar 2023 09:06:57 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yabs-sid=1540172781680253617; Path=/; SameSite=None; Secure
i=c2zUVYYwpaf4xpKyMKaQYnuOQ4r/LZBFFeTwYvEsvpmgg0LC70iSzkCCw7bv50SwO30eKSB9eZ4DZNzV10PAdKhmgAQ=; Expires=Mon, 28-Mar-2033 09:06:56 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=876968381680253617; Expires=Mon, 28-Mar-2033 09:06:56 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yuidss=876968381680253617; Expires=Sat, 30-Mar-2024 09:06:57 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1711789617.yc.1680253617#1711789617.yrts.1680253617#1711789617.yrtsi.1680253617; Expires=Sat, 30-Mar-2024 09:06:57 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:06:57 GMT
last-modified: Fri, 31-Mar-2023 09:06:57 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mydiv.net/tim/design/favicon/favicon-192x192.png
54.36.106.111200 OK 19 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon-192x192.png
IP 54.36.106.111:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 70289d57de1e3d2dffeb3c3a85418a9c
673136d7d97ebfea4e16a65b2c356b2f4e4f6067
b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213; _ym_uid=1680253617700816872; _ym_d=1680253617
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/png
content-length: 18575
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-488f"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:06:57 GMT
access-control-allow-origin: *
etag: "64241f95-2b"
expires: Fri, 31 Mar 2023 10:06:57 GMT
accept-ranges: bytes
last-modified: Wed, 29 Mar 2023 14:23:01 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mydiv.net/tim/design/favicon/favicon.min.svg
54.36.106.111200 OK 4.5 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon.min.svg
IP 54.36.106.111:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators
Hash de51b957170a46e23a1a3eaf49df0554
e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2
ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213; _ym_uid=1680253617700816872; _ym_d=1680253617
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-116f"
expires: Sun, 30 Apr 2023 09:06:57 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8df31f5ac474adbf58cfa599304bcae
c3001e355800deb24f04a565cc1ccb1131c1eadc
da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8df31f5ac474adbf58cfa599304bcae
c3001e355800deb24f04a565cc1ccb1131c1eadc
da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 1777247adb4e3b61d07c957237d7a443
9f58aa8ab438b5f4f19c67b24c0fced1be56c423
095eb089bc1f6c4d5502cff96499b16e8058cb8adf5b19648753d45c9241f7d1
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:16:11 GMT
ETag: "9f58aa8ab438b5f4f19c67b24c0fced1be56c423"
Last-Modified: Fri, 31 Mar 2023 07:16:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 606
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077077d89d0afa-OSL
mydiv.net/build/public/styles/site.mydiv.css?ver=e24849be52c774f06638
54.36.106.111200 OK 44 kB URL HTTP/2 mydiv.net/build/public/styles/site.mydiv.css?ver=e24849be52c774f06638
IP 54.36.106.111:0
Hash 6b9480ffa2b447fb66e21a2b635f3f83
3ce1a95828b260d62129dd51f94750c27c6ae70c
e277acef693ae12c2b9c428b8fdd2e4f4fb4d803d20f6e04acd5749963c5a0c5
GET /build/public/styles/site.mydiv.css?ver=e24849be52c774f06638 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: text/css
last-modified: Wed, 22 Mar 2023 21:30:40 GMT
vary: Accept-Encoding
etag: W/"641b7380-27338"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//mydiv.net/;0.7126238164118126
88.212.201.204200 OK 132 B URL HTTP/1.1 counter.yadro.ru/hit?t44.6;r;s1280*1024*24;uhttps%3A//mydiv.net/;0.7126238164118126
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 0223d80a320a983871bfa82aa6d698ea
f4e06fe8e83c662bb565f175d7de22f51c1e7c9d
fa523f248a332cb89ae3ad8cf51d840153e0f96bcc2a4c8db736e02a340dab48
GET /hit?t44.6;r;s1280*1024*24;uhttps%3A//mydiv.net/;0.7126238164118126 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 31 Mar 2023 09:06:57 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Expires: Wed, 30 Mar 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.211.2200 OK 48 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.211.2:0
File type ASCII text, with very long lines (3599)
Hash 5cfd11b52f7488bc741637146d35bea3
ea2bac3d74c536c23aeb27bfa0688ead670d832e
a61c06ecff496325404ff47a080865a08d729e072732b3ef64fb8d070d3829a6
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 31 Mar 2023 09:06:57 GMT
expires: Fri, 31 Mar 2023 09:06:57 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12886323525709742554
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8df31f5ac474adbf58cfa599304bcae
c3001e355800deb24f04a565cc1ccb1131c1eadc
da2ed2c8207f9290413bf7d38a0957f48cc524c6afe7b481b77a84930c7a9e38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3205)
Hash bad17ab9662318e8927e5009c83c2ad1
53ded630f95abe04b7b77d43076bf71b9ea71c02
68da39270ebfa6d17f4b765cbe004797a736611585ff0c53213d91f78f13c260
GET /pagead/html/r20230329/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4549
x-xss-protection: 0
date: Fri, 31 Mar 2023 02:50:55 GMT
expires: Fri, 14 Apr 2023 02:50:55 GMT
cache-control: public, max-age=1209600
age: 22563
etag: 2378337311435320485
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash a4a7e91ef7bf481ba27e5a2a0b2739ae
a819073031aa056cc33d8febaf3e82f1d50e841d
68ad5482f084b5e585ad594443d76babc502854289807bc3837f9b56c2624901
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:58 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:06:19 GMT
ETag: "a819073031aa056cc33d8febaf3e82f1d50e841d"
Last-Modified: Fri, 31 Mar 2023 07:06:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 765
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0770798ef1fab4-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash a4a7e91ef7bf481ba27e5a2a0b2739ae
a819073031aa056cc33d8febaf3e82f1d50e841d
68ad5482f084b5e585ad594443d76babc502854289807bc3837f9b56c2624901
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:58 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:06:19 GMT
ETag: "a819073031aa056cc33d8febaf3e82f1d50e841d"
Last-Modified: Fri, 31 Mar 2023 07:06:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 765
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077079bf08fab4-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash a4a7e91ef7bf481ba27e5a2a0b2739ae
a819073031aa056cc33d8febaf3e82f1d50e841d
68ad5482f084b5e585ad594443d76babc502854289807bc3837f9b56c2624901
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:58 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:06:19 GMT
ETag: "a819073031aa056cc33d8febaf3e82f1d50e841d"
Last-Modified: Fri, 31 Mar 2023 07:06:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 765
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077079b923b503-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash a4a7e91ef7bf481ba27e5a2a0b2739ae
a819073031aa056cc33d8febaf3e82f1d50e841d
68ad5482f084b5e585ad594443d76babc502854289807bc3837f9b56c2624901
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:58 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:06:19 GMT
ETag: "a819073031aa056cc33d8febaf3e82f1d50e841d"
Last-Modified: Fri, 31 Mar 2023 07:06:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 765
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077079bfe6b509-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash a4a7e91ef7bf481ba27e5a2a0b2739ae
a819073031aa056cc33d8febaf3e82f1d50e841d
68ad5482f084b5e585ad594443d76babc502854289807bc3837f9b56c2624901
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:06:58 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 04 Apr 2023 07:06:19 GMT
ETag: "a819073031aa056cc33d8febaf3e82f1d50e841d"
Last-Modified: Fri, 31 Mar 2023 07:06:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 765
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b077079cf1ffab4-OSL
yandex.ru/ads/system/context.js
5.255.255.70200 OK 112 kB URL HTTP/2 yandex.ru/ads/system/context.js
IP 5.255.255.70:0
File type ASCII text, with very long lines (65492)
Size 112 kB (111515 bytes)
Hash 3848292058c22baf0e0894bf493f7d73
b28a06c96574f697ebdb6f14ef512ad3af773d94
a6f784ccee4c8d502506ff5f624e0b5dc06e1147e0844064d9ba2ceacf938ece
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=166Uc44gk3XmCuv8eAPurF5xwHDnpYW+NbWEXsEhFscUEmTRYkROBXQClQexjFxd2N6zEBJCZQKnLnMB4jAxrIpm+e4=; Expires=Sun, 30-Mar-2025 09:06:57 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1608262201680253617; Expires=Sun, 30-Mar-2025 09:06:57 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
expires: Fri, 31 Mar 2023 10:06:57 GMT
x-yandex-req-id: 1680253617930852-8337179838660826220-vla1-2676-vla-l7-balancer-8080-BAL-6620
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/748390/71596f017bcb7bb8c750.js
178.154.131.216200 OK 114 kB URL HTTP/2 yastatic.net/partner-code-bundles/748390/71596f017bcb7bb8c750.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (65497)
Size 114 kB (114051 bytes)
Hash 5be18229fdc736f479b2766150406304
6810b99209df54eed5a521a18d963e03c2656233
1ce5109c3242ebd6bc7c663847087711ff3948a1b8577abe591d9e9cc60f60be
GET /partner-code-bundles/748390/71596f017bcb7bb8c750.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 31 Mar 2023 09:06:58 GMT
content-type: text/javascript; charset=utf-8
content-length: 114051
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5be18229fdc736f479b2766150406304"
expires: Sun, 30 Mar 2053 15:41:24 GMT
last-modified: Wed, 29 Mar 2023 16:24:15 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/748390/2ec9a88e40a26b53acde.js
178.154.131.216200 OK 2.1 kB URL HTTP/2 yastatic.net/partner-code-bundles/748390/2ec9a88e40a26b53acde.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (6989)
Hash 2ceb404c8dad809b940913cfe19e9d8e
004003db876f5115a1c85dee8bbb74f98dcde91e
6693c2fadeb1773236594668457f77d49c588de57794fd6f9f2bd752f759bbf7
GET /partner-code-bundles/748390/2ec9a88e40a26b53acde.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 31 Mar 2023 09:06:58 GMT
content-type: text/javascript; charset=utf-8
content-length: 2065
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "2ceb404c8dad809b940913cfe19e9d8e"
expires: Sun, 30 Mar 2053 15:41:12 GMT
last-modified: Wed, 29 Mar 2023 16:24:15 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bccde084c491a04e52752f2af1e16d
5a7a761608a0d79d383e104a0455f76bb0d2248e
aed5aade370f65d015700850f0a3a80c5f47066e82d200f5cf1d2d44657388dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yastatic.net/partner-code-bundles/748390/1c0942547d39e10f5f56.js
178.154.131.216200 OK 4.8 kB URL HTTP/2 yastatic.net/partner-code-bundles/748390/1c0942547d39e10f5f56.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (14344)
Hash 3fb65116f098458b21732ce4e1e8f6b9
9bdfa040c84510c4259fb323111fa941e64993e5
91f758f5134d37c726f483fb205fb5f6ac6c01099ccf91c081bac376545e6fa6
GET /partner-code-bundles/748390/1c0942547d39e10f5f56.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 31 Mar 2023 09:06:58 GMT
content-type: text/javascript; charset=utf-8
content-length: 4802
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3fb65116f098458b21732ce4e1e8f6b9"
expires: Sun, 30 Mar 2053 15:41:24 GMT
last-modified: Wed, 29 Mar 2023 16:24:15 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7445f8f9dbe44a0457ed584305727c4
0582edfdc9fe490bfeb72250c218af3cff3f6cab
8fa39260f96786df1a76e9896a1a9614fd3ab4aadb1a2f98b909c55caeb9eae1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yastatic.net/partner-code-bundles/748390/6316efaaeec50290a797.js
178.154.131.216200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/748390/6316efaaeec50290a797.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (65494)
Hash 6b0f85f6af2c8e0f427c747f3cad68c6
d2aa2d1d4be808ae6b401bcf54c1bcf686df5386
8200740ec68c78df842ec8601ce3a8e935e1ef39c24bb7f164b5d22cc8ed1764
GET /partner-code-bundles/748390/6316efaaeec50290a797.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 31 Mar 2023 09:06:58 GMT
content-type: text/javascript; charset=utf-8
content-length: 24445
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "6b0f85f6af2c8e0f427c747f3cad68c6"
expires: Sun, 30 Mar 2053 15:41:24 GMT
last-modified: Wed, 29 Mar 2023 16:24:15 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.216200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 31 Mar 2023 09:06:58 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sun, 30 Mar 2053 15:41:24 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mydiv.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 09:06:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mydiv.net
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 09:06:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7445f8f9dbe44a0457ed584305727c4
0582edfdc9fe490bfeb72250c218af3cff3f6cab
8fa39260f96786df1a76e9896a1a9614fd3ab4aadb1a2f98b909c55caeb9eae1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2f67dc9a5c95eca1b4911ccdfa024557
1c5fae325ebbec9280401bd05f68964e2d631afb
efe6c92a3a27c6e0566b3889c0e2b56f284afaf91d106660cfe63bee6420d99a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d9bccde084c491a04e52752f2af1e16d
5a7a761608a0d79d383e104a0455f76bb0d2248e
aed5aade370f65d015700850f0a3a80c5f47066e82d200f5cf1d2d44657388dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2f67dc9a5c95eca1b4911ccdfa024557
1c5fae325ebbec9280401bd05f68964e2d631afb
efe6c92a3a27c6e0566b3889c0e2b56f284afaf91d106660cfe63bee6420d99a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12849
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 09:06:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12849
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 09:06:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YJQbVC3HpHtLrNiTzsUmCOMIWgRik2lIhvpAz0DfmUNSznCXw6ipYw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:47:32 GMT
age: 8366
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 876e5464aba1639f3b07b07d1d694514
93885a6205be71d16187782b1803f53d5c8538cb
6e2b6b15f462922a9e8260f55cfcd94d488d1a48435458db43270ea3b825d8c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13775
x-amzn-requestid: 43d1a1f3-b189-4fcd-a298-429123d1921b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUloF9woAMFU4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-13778451622503253ea252eb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXA995GxGti4_AzSi9F19ZNvUwm5_ZSBw0BB0lRIfNHcmX7Ajt6bSg==
via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:36 GMT
age: 40822
etag: "93885a6205be71d16187782b1803f53d5c8538cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 211d737362f7cbcd8c77cee7d29fa2f5
668d1d80c88082928c6ca01fbf1ccbfcd079f64f
05672d4ab964a706c41d73b51592ca2425983e77544f08198dd2d3a7dcc5b3a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11114
x-amzn-requestid: e9e6a6b5-e6e8-4ca4-9302-a1fc023a38af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkypoH5goAMF6Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424fe3d-63c6c8465407f5dc26e9aced;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 03:13:01 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: br3zxfuvcl_y9fkridQmtf6qWp6sd9N6bcmJuFcNcozeTRqPGOgtFQ==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:26:10 GMT
age: 42048
etag: "668d1d80c88082928c6ca01fbf1ccbfcd079f64f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1688ae550e5e9181de2448a9cade8a26
a46eb0cd75f46778dc802b648f7c391ce801c700
e717e6e64c928571506bc6d19e3d9ce19bea3292f01618a6d9ddbbaffe65ffd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9055
x-amzn-requestid: 1fad6d1e-3380-4574-9796-ca6bde35b507
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUneEK8IAMF1EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260162-690f6e9933616e9b74b70435;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 5qljjE3ByqQaRJhcpkBZFcYVH4lCoP2idQM0iPBAT7znLfoZmO0lUg==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:52:53 GMT
age: 40445
etag: "a46eb0cd75f46778dc802b648f7c391ce801c700"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 40775
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e55c2ccec92fa37b631f5616ba5e1b77
c3f1113bad672968f22e63693ef4481f7f5616fe
10bfe1a2cf0b6e0a2a548935a1afc061fc61990a121a84580f3969df68b7974c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pcFiVnrSVAh6gQ3VuQDE32650Yoj5bcTJrishSOFVpR3DHh4lUvdag==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:05:16 GMT
age: 39702
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7117d0725779b203269d6c54c3ccedcf
24f4e806fd15c39484288a88c67117c918ce0829
ecfdfee4723c973d404d5e580a8cead357de755354328bfa40c1041350a76504
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a54559cbe6b913272745930d0d88346a
dd59af51740af567109eec67847fcd515b191e0b
b76846074b40dba161bcbbc5c69434bec196efef09befb675ea5010566712091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.34200 OK 50 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.34:0
File type ASCII text, with very long lines (3399)
Hash 1e7768364a8db1e88535d1ca1ee9cd6b
90d26fec8305c95cc5f6fa4b2398456d88627570
eb24872de47889683879df871844b6468d59bb8126f106189b44bbe305853a0a
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
timing-allow-origin: *
content-length: 49585
date: Fri, 31 Mar 2023 09:06:58 GMT
expires: Fri, 31 Mar 2023 09:06:58 GMT
cache-control: private, max-age=3000
etag: "1680090252828925"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
216.58.207.193200 OK 8.3 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (2329)
Hash 15153e582e642d8a9980467efaa11ad4
f738352e6b73226ade4d1df49abd968ef49b9f90
f87b1904ab612eb27b708cfdc920e8e7f92f987737147280e3248ad5d87bf33d
GET /pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8268
x-xss-protection: 0
date: Thu, 30 Mar 2023 22:33:06 GMT
expires: Thu, 13 Apr 2023 22:33:06 GMT
cache-control: public, max-age=1209600
age: 38032
etag: 8048349561987089234
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7117d0725779b203269d6c54c3ccedcf
24f4e806fd15c39484288a88c67117c918ce0829
ecfdfee4723c973d404d5e580a8cead357de755354328bfa40c1041350a76504
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:06:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.211.3200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:10 GMT
expires: Wed, 27 Mar 2024 10:31:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 254149
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.211.3200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 09:33:22 GMT
expires: Fri, 29 Mar 2024 09:33:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 84817
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.211.3200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.211.3:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 600018
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/16f0d4cb97c8e7eb77e268815c2afdab.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.35200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/16f0d4cb97c8e7eb77e268815c2afdab.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.35:0
File type C++ source, ASCII text, with very long lines (1916)
Hash eca0bce15f10f697cb96c6cbda92d606
dfb5d0bb06fc7409a278debb9f483482dda217b3
3f51bc14d90f0811a2d2621bde8704153ca0d9699b7072141fc8405c1b4a9be5
GET /mysidia/16f0d4cb97c8e7eb77e268815c2afdab.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14384
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 00:07:44 GMT
expires: Mon, 26 Jun 2023 00:07:44 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 27 Mar 2023 22:20:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 291555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash c66ccdefffc6f40c740b07ca7d86129b
c3de414b44d334a67ac60b04aa006a701d99cd74
f6f899ae0fc9c3d4d5c3f92f1b44f8b6ca8396aaf24d0907cb0bb1e3ccea5b93
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 31 Mar 2023 09:07:00 GMT
date: Fri, 31 Mar 2023 09:07:00 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-K2ztZEIVqGfLM1Y8ApmcLA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NPC9U16u7ZVTARWtR6z7IQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OaQ6fPrqCMDBIuPHAa+goiNi1k8=
Date: Fri, 31 Mar 2023 09:07:01 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=1008356285&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253621%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253621&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=1008356285&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253621%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253621&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=1008356285&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253621%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253621&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 132962
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:01 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:01 GMT
last-modified: Fri, 31-Mar-2023 09:07:01 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=792280393&wv-type=3&browser-info=we%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=792280393&wv-type=3&browser-info=we%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=792280393&wv-type=3&browser-info=we%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090701%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:01 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:01 GMT
last-modified: Fri, 31-Mar-2023 09:07:01 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=742422073&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090702%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=742422073&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090702%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=742422073&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253622%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090702%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253622&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3959
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:02 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:02 GMT
last-modified: Fri, 31-Mar-2023 09:07:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wv-check=48330&wv-type=0&wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=898605029&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wv-check=48330&wv-type=0&wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=898605029&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=48330&wv-type=0&wmode=0&wv-part=1&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=898605029&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:04 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:04 GMT
last-modified: Fri, 31-Mar-2023 09:07:04 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=743675785&wv-type=3&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
87.250.250.119200 OK 908 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=743675785&wv-type=3&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type gzip compressed data, max compression\012- data
Hash 6048ed344e305dea08a06f6f7f752bec
6a2ac095fd28035b84c881623b85ee309c5fbcb4
deaee1b65e87f9a8320fde268747a4da4504af6eff5f97b794f3fa8d10a220fc
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=743675785&wv-type=3&browser-info=we%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:05 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:05 GMT
last-modified: Fri, 31-Mar-2023 09:07:05 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=138439367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=138439367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=575091619&page-url=https%3A%2F%2Fmydiv.net%2F&rn=138439367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680253625%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230331090704%3Au%3A1680253617700816872%3Avf%3A3ue65zhww2f2ejkyzehotb%3Ast%3A1680253625&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 31 Mar 2023 09:07:05 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 31-Mar-2023 09:07:05 GMT
last-modified: Fri, 31-Mar-2023 09:07:05 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mydiv.net/build/public/site.mydiv.bundle.js?ver=e24849be52c774f06638
54.36.106.111200 OK 0 B URL HTTP/2 mydiv.net/build/public/site.mydiv.bundle.js?ver=e24849be52c774f06638
IP 54.36.106.111:0
GET /build/public/site.mydiv.bundle.js?ver=e24849be52c774f06638 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 22 Mar 2023 21:30:40 GMT
vary: Accept-Encoding
etag: W/"641b7380-45ee2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=2a808cf3dfe0917a891d
54.36.106.111200 OK 0 B URL HTTP/2 mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=2a808cf3dfe0917a891d
IP 54.36.106.111:0
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=2a808cf3dfe0917a891d HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=4769b04c106e097187192a3daea6a56b1047157d88567f2d8db47c72435858fc; ifh=14674570976426a2b0c23fa8.36240213; _ym_uid=1680253617700816872; _ym_d=1680253617
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 31 Mar 2023 09:06:57 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 22 Mar 2023 21:30:40 GMT
vary: Accept-Encoding
etag: W/"641b7380-120a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C700
IP 142.250.74.74:0
GET /css?family=Roboto%3A300%2C400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 09:06:58 GMT
date: Fri, 31 Mar 2023 09:06:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2