ocsp.r2m02.amazontrust.com/
471 B URL ocsp.r2m02.amazontrust.com/
IP
Hash 008489a78f34707d419432b0567b82e2
c0759ef9267e68ab672ecedc14f87f6aa561659b
6285e4c205f911ad68594006ce0e441ed74da6287a8d79ee3f44a462bcfb3e07
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 20:33:04 GMT
Last-Modified: Fri, 09 Jun 2023 19:44:56 GMT
Server: ECAcc (dcb/7EDB)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XSsquTa-1PAX9P15fTPBCdJfJ1MnnwEoeP4t8ReMjPiqdUoccgw8XA==
Age: 2888
www.uplify.us/s/8g1pi
5.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 5d2e72438edb952382a007968ace561a
fdf225c5bb2130c778fd34f9b6801d38412a30eb
9f6d87003c1f346ecf3af846b015c8ffd5bed10e67515fa29ce6fe73db2e744d
GET /s/8g1pi HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 5709
date: Fri, 09 Jun 2023 20:33:04 GMT
x-amzn-requestid: 364d331b-d615-4ba0-978f-f1b5c290e16d
set-cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; samesite=lax
uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=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; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-amz-apigw-id: GRLkGHseFiAFpVQ=
cache-control: no-cache, private
x-amzn-trace-id: Root=1-64838c80-46a3b9623c075acf4fc8ab8d;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:04 GMT
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BIBuxMQsuPbS846Uo3AV2FX5L-ansOpkif3GmPjMzttyNFLlYNmWmg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NH83P56
43 kB URL www.googletagmanager.com/gtm.js?id=GTM-NH83P56
IP
File type ASCII text, with very long lines (2271)
Hash cae1963d17ac11b8295cd9f91688f1d1
f8ecf35718945a0cf818e60f83d6d621fd550425
bb7569e88ccdcec00425790191c411e35dd8e2b7d21f9f219a03d8c1129be739
GET /gtm.js?id=GTM-NH83P56 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Jun 2023 20:33:05 GMT
expires: Fri, 09 Jun 2023 20:33:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Jun 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43447
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js
2.9 kB URL cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js
IP
File type ASCII text, with very long lines (6214)
Hash 58a7299a8a191226f70b91cc0f9eaec1
cfc5d92bb87ead1eb0e8db8708c0e30cfaf4d80d
0dafb7d9c2796c16bf31d4f78b12c38406835bf7a380da2a71c8f0feec80fc44
GET /npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.8.3
x-jsd-version-type: version
etag: W/"1939-z8XZK7h+rR6w6NuHCMDjDPr02A0"
content-encoding: br
accept-ranges: bytes
date: Fri, 09 Jun 2023 20:33:05 GMT
age: 31323
x-served-by: cache-fra-eddf8230132-FRA, cache-bma1626-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2888
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash 48c83af1050df023d6245307e174e36a
60413aa015555f792db867886b82a1336276427b
79bea97fd71aa6ee6c1abbc06d5f1ac7f5fe816ed37a154b200f1cdb80abdecd
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8F36278B0B641E81942B25C9557163503BEC589F"
Expires: Sat, 10 Jun 2023 08:00:00 GMT
Last-Modified: Fri, 09 Jun 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 703
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25ca1ff4b503-OSL
unpkg.com/axios@0.25.0/dist/axios.min.js
93 kB URL unpkg.com/axios@0.25.0/dist/axios.min.js
IP
File type ASCII text, with very long lines (17808)
Hash 3f3c2540b53a9f09d04c2a826716fcf2
43485e7ade28135f2a1cca4d4710a1956094e4da
b00828aa594968071f062841833553f98541845061e2d1c3144da47acce5940d
GET /axios@0.25.0/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4615-Q0heet4oE18qHMpNRxChlWCU5No"
via: 1.1 fly.io
fly-request-id: 01H2ATVNPWCE8ZNSS8VA00PEEJ-fra
cf-cache-status: HIT
age: 204407
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d4c25c64c9ffab4-OSL
content-encoding: br
X-Firefox-Spdy: h2
fpnpmcdn.net/v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js
41 kB URL fpnpmcdn.net/v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js
IP
File type Unicode text, UTF-8 text, with very long lines (65286)
Hash e62e2979bb6dd7130cf090a7a3e7ce35
e7180c3a104e59bfff82945c71d344d9f86eb263
5dfc0302b3485c6fcee0870ee2f3c1f8ff3ee0a89586b57ec4a22666da557da3
GET /v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js HTTP/1.1
Host: fpnpmcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: CloudFront
date: Wed, 07 Jun 2023 15:34:57 GMT
cache-control: public, max-age=3438, s-maxage=580966
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
etag: W/"5xgMOhBOWb//gpRccdNE2fhusmM"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yf1juu2jGF_1AbNhkmNTMerI68PEnnC39_qVK2ELkTFDs_1-7wXnjA==
age: 190688
X-Firefox-Spdy: h2
eun1.fptls.com/
120 B IP
File type ASCII text, with no line terminators
Hash 7580af6c08f95f4ab65c3e8316b5d9c6
69608b9ce4786badb9ed63a4081ba83af55fd3bc
f210ae407a65016609c04051ec74cbc9f7b0751eaffcf471467b0979df959400
GET / HTTP/1.1
Host: eun1.fptls.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=2592000, immutable, private
strict-transport-security: max-age=63072000; includeSubDomains
content-type: text/plain; charset=utf-8
content-length: 120
date: Fri, 09 Jun 2023 20:33:05 GMT
X-Firefox-Spdy: h2
www.uplify.us/favicon.ico
590 B URL www.uplify.us/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 01c83aa85e97b7e10df53150d530cfe3
b548a3cb9d8418c0577390a1a8ba2a6ee1d9db4e
2dfecd7f696563c2c6d526c0f25588769cf5a1917211831eaeeafb6ad761bb73
GET /favicon.ico HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/s/8g1pi
Cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
content-length: 590
location: https://d1pqg1uhsn461w.cloudfront.net/82d0fd9c-ca82-479b-a1af-1a20577bb65c/favicon.ico
date: Fri, 09 Jun 2023 20:33:05 GMT
x-amzn-requestid: 112ad06e-a0ba-4357-83b1-0319521b5f14
x-amz-apigw-id: GRLkTEzeFiAFvmw=
cache-control: max-age=3600, public
x-amzn-trace-id: Root=1-64838c81-2a01d2043b78569947ed530e;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:05 GMT
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9GTfz5Et7cFPvrxQ4UBEzcM1JQ6aLHs8RW_WDmER0zLkJ-angFz4hw==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash fc6e41649cc0efc5cb00014f48d20f0e
4a9925637880487dc9ada35bd4c84c0579ab6497
b3e1b0ab2a845f3c8d4e1d875ccfbe7efd170d1e68d66f258d52c782f0e1c622
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 17:12:31 GMT
ETag: "4a9925637880487dc9ada35bd4c84c0579ab6497"
Last-Modified: Fri, 09 Jun 2023 17:12:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25cbedebb4f3-OSL
mytopf.com/js/code.js
15 kB IP
ASN #205830 Mrgroup Investments Limited
File type ASCII text, with very long lines (653)
Hash c4306f1cccb8e2a27efc246ea00c7225
85209ed41159f7e837fbb67ee9a4a51c0b3b42f2
6ecf6a9d464bca62342eeded280696113e2faeb2411e61adddda71ba3011284c
GET /js/code.js HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 14:46:04 GMT
Set-Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::; path=/; expires=Sun, 09-Jun-24 20:33:05 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
ETag: W/"6478af2c-898d"
Expires: Fri, 09 Jun 2023 21:33:05 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: *
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: max-age=3600, private
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
472 B IP
Hash e3150775c6717d68b242c5a9c65b7915
cacc261b8f875ed6ead31be5ca9349dfa29a0289
be588563fd4c901a718c5ad79143a83b8a1ee2dcd0ae84a76aa5288f4737ad89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452
42 B URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Jun 2023 20:33:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash e3150775c6717d68b242c5a9c65b7915
cacc261b8f875ed6ead31be5ca9349dfa29a0289
be588563fd4c901a718c5ad79143a83b8a1ee2dcd0ae84a76aa5288f4737ad89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mytopf.com/counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919
43 B URL mytopf.com/counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919
IP
ASN #205830 Mrgroup Investments Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1_NxWA0VkXoI00000s1iP4oI:::0-0-0-99de542:CAASELC12BaXfMlWgp8W5069juQaYHsEM83TdKEQU23OA_7LF5ZQnycTxvj1kKA7m0Sc5bnBd64hEO_PbGIwyJ0qPzBZPaUAGCFpf_wDXM6bLJeEq8TQ5bLH_42TlhEqIGeEIEpACpSgnhg7WGc_vFaM8GHeCg; path=/; expires=Sun, 09-Jun-24 20:33:06 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
FTID=0; path=/; expires=Thu, 01-Jan-70 00:00:01 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656
43 B URL mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656
IP
ASN #205830 Mrgroup Investments Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASEIwgtNm8c1ethEBTWkLimT8aYNj8Gpgxtqb0P1c_T9UJM3x2wEgSfBFi-Jktz7PM0g4TRZoJlc_za5Kl9shnB67VhI3z9GMr90N5jnDrRjRQsY54hvblM6hGV9HsDOy5mwOyma-rzZKp58AtKpOzgXOChQ; path=/; expires=Sun, 09-Jun-24 20:33:06 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
FTID=0; path=/; expires=Thu, 01-Jan-70 00:00:01 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1
0 B URL region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.uplify.us
date: Fri, 09 Jun 2023 20:33:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
471 B URL ocsp.r2m02.amazontrust.com/
IP
Hash 61cd46b06f8d9f9e65f445bdeb9bb90c
af59c53bc04d3627cc20c7c75183bc1ef63d4f30
678f64e4ca7f0a8b8d3b2d90f07a18492f0196b37f454abeedca2221e87e4754
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 20:33:08 GMT
Server: ECAcc (dcb/7339)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GG4YiwTVvEd2sYcuTtAgzAOu0Lw9oHKoyJcBLMh1wQNMhwI8wmQLLg==
fp.uplify.us/?ci=js/3.8.14
1.0 kB URL fp.uplify.us/?ci=js/3.8.14
IP
Hash e089351ca009d8efdd38a8600248d040
b0b4b67081a3f459f9c61093062ed5ea5e7a7dbb
2e2770aa12b8b2f1944dbb81c8d5c1a0242dfeb20d2ea27ac98d77da8a53b62b
POST /?ci=js/3.8.14 HTTP/1.1
Host: fp.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3359
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: _ga_2WQGPK6K4Z=GS1.1.1686342785.1.0.1686342785.60.0.0; _ga=GA1.1.1819400242.1686342785; tmr_lvid=74e673ad275e084a498f51728ea2de10; tmr_lvidTS=1686342785597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:08 GMT
content-type: text/plain
content-length: 1030
server: nginx/1.22.1
access-control-allow-credentials: true
access-control-allow-origin: https://www.uplify.us
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=d0JaNvDe6BQzrjaIqruhdB8Okv4pywa12Jw0bzynO6+pTAKteRjXf52CGAdE/rhbJex+dvoYoV7/y32BgV35VK5BF41aizVgRg==; Path=/; Domain=uplify.us; Expires=Sat, 08 Jun 2024 20:33:08 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
www.uplify.us/api/v1/creative/product/link/593/streamer_link/real
15 B URL www.uplify.us/api/v1/creative/product/link/593/streamer_link/real
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b
POST /api/v1/creative/product/link/593/streamer_link/real HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0=
Content-Length: 34
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/s/8g1pi
Cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=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; _ga_2WQGPK6K4Z=GS1.1.1686342785.1.0.1686342785.60.0.0; _ga=GA1.1.1819400242.1686342785; tmr_lvid=74e673ad275e084a498f51728ea2de10; tmr_lvidTS=1686342785597; _iidt=d0JaNvDe6BQzrjaIqruhdB8Okv4pywa12Jw0bzynO6+pTAKteRjXf52CGAdE/rhbJex+dvoYoV7/y32BgV35VK5BF41aizVgRg==; _vid_t=YiHK+aRZ0ju1vdTs/R8B8wNs0LHY1tF+QTL0XE16Zz+GMDtvhtEVZFj4SxCo2X6GhqI2XjB3Bh8WU//f7dJR0I4v4JDi8Dr7Ng==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 15
date: Fri, 09 Jun 2023 20:33:08 GMT
x-amzn-requestid: a4fbdc46-8cdb-48f9-aed5-c85158d55e4a
access-control-allow-origin: https://www.uplify.us
x-ratelimit-remaining: 119
x-amz-apigw-id: GRLktFFOliAFj0w=
vary: Origin
cache-control: no-cache, private
x-ratelimit-limit: 120
x-amzn-trace-id: Root=1-64838c84-33da85286964229b7b56dd1a;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:08 GMT
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dFHm4Qi4q9xII-qZlsHXDVqSRb2MDzlEIxPyWg4q-EggCUgOwrFFog==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
939 B URL ocsp.globalsign.com/gseccovsslca2018
IP
Hash c124adb8b6fa245e7a7a3d47a3e4de60
27342342007e326476cec6645c2a7e8a97a5a875
66a20c0a47fd40fa7fc3beafc81a5ceddc6e76350990918b629ff8fd2a320ecf
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:46:19 GMT
ETag: "27342342007e326476cec6645c2a7e8a97a5a875"
Last-Modified: Fri, 09 Jun 2023 18:46:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3502
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25de0aa7b4f3-OSL
trk.mail.ru/c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061
302 Found 138 B URL User Request GET HTTP/2 trk.mail.ru/c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061
IP
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061 HTTP/1.1
Host: trk.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 09 Jun 2023 20:33:08 GMT
content-type: text/html
content-length: 138
set-cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; path=/; expires=Sun, 09-Jun-24 20:33:08 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
location: https://cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash a0045e1a0b121e946bef5a26acb6d17c
434c8a8ea6efb2bf77693bafe1d8792d1ffbd7ad
b51807ee374f9dc1b9b5e1be8e3c8e5ad188500b1a7ec155e02298796c93f8ba
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 16:41:18 GMT
ETag: "434c8a8ea6efb2bf77693bafe1d8792d1ffbd7ad"
Last-Modified: Fri, 09 Jun 2023 16:41:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 673
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25df7d46b4f3-OSL
cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
301 Moved Permanently 162 B URL User Request GET HTTP/1.1 cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
IP
Certificate IssuerGlobalSign nv-sa
Subject*.cloud.mail.ru
FingerprintA0:11:5B:DE:A8:08:10:77:6E:84:C0:67:94:12:BB:AE:A5:37:0D:C4
ValidityThu, 16 Feb 2023 10:14:20 GMT - Tue, 19 Mar 2024 10:14:19 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023 HTTP/1.1
Host: cloud.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uplify.us/
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/html
Content-Length: 162
Location: https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Connection: keep-alive
X-Host: cld-front1.q
X-UA-Compatible: IE=Edge
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' blob: data: https://static.mail.corpcloud.mail.ru https://auth.mail.ru https://portal.mail.ru https://bar.love.mail.ru https://xray.mail.ru https://ad.mail.ru https://mc.yandex.ru https://an.yandex.ru https://yandex.ru https://firebase.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://vk.com https://ok.ru https://corsapi.imgsmail.ru https://top-fwz1.mail.ru https://r3.mail.ru https://cloud.mail.ru https://uploader.cloud.mail.ru https://zipview.mail.ru; script-src 'self' 'report-sample' 'nonce-kPEKrYFJdS' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://limg.imgsmail.ru; img-src blob: data: https://static.mail.corpcloud.mail.ru https://rs.mail.ru https://filin.mail.ru https://an.mail.ru https://b2.mail.ru https://ad.mail.ru https://top-fwz1.mail.ru https://trk.mail.ru https://xray.mail.ru https://stat.radar.imgsmail.ru https://img1.imgsmail.ru https://www.tns-counter.ru https://www.google-analytics.com https://counter.yadro.ru https://r.mradx.net https://d.mradx.net https://an.yandex.ru https://bs.yandex.ru https://mc.yandex.ru https://avatars.mds.yandex.net https://ad.adriver.ru https://vk.com https://*.userapi.com https://wcm-ru.frontend.weborama.fr https://cloud.imgsmail.ru https://thumb.cloud.mail.ru https://cloud.mail.ru https://r3.mail.ru https://docs.mail.ru https://apf.mail.ru https://zipview.mail.ru https://mail.radar.imgsmail.ru https://favicon.yandex.net; style-src 'self' 'report-sample' 'unsafe-inline' https://static.mail.corpcloud.mail.ru https://limg.imgsmail.ru https://r.mradx.net https://fonts.googleapis.com https://cloud.imgsmail.ru https://cloud.mail.ru; font-src 'self' data: https://static.mail.corpcloud.mail.ru https://fonts.googleapis.com https://fonts.gstatic.com https://yastatic.net https://cloud.imgsmail.ru https://top-fwz1.mail.ru https://cloud.mail.ru; media-src 'self' https://cloud-common-static.hb.bizmrg.com https://r.mradx.net https://top-fwz1.mail.ru https://cloud.mail.ru; object-src blob: 'self'; worker-src 'self'; manifest-src 'self' https://static.mail.corpcloud.mail.ru; frame-src 'self' https://o2.mail.ru https://www.google.com https://top-fwz1.mail.ru https://cloud.mail.ru https://amr.mrgcdn.ru https://zipview.mail.ru; frame-ancestors 'self'; child-src 'self'; upgrade-insecure-requests ; report-uri https://cspreport.mail.ru/cloud/;
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 09 Jun 2022 20:33:09 GMT
X-XSS-Protection: 1; mode=block
cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
200 OK 82 kB URL User Request GET HTTP/1.1 cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
IP
Certificate IssuerGlobalSign nv-sa
Subject*.cloud.mail.ru
FingerprintA0:11:5B:DE:A8:08:10:77:6E:84:C0:67:94:12:BB:AE:A5:37:0D:C4
ValidityThu, 16 Feb 2023 10:14:20 GMT - Tue, 19 Mar 2024 10:14:19 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (54038), with CRLF line terminators
Hash 4bcb5393be413950cba22fe80981168c
a009f1e0050ba005edbf5e334881e31a232f310e
afd6f0beacbaf5ed4fe14f32b76ea6b93769c338942e2f0c0ca4deaa168ea690
GET /promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023 HTTP/1.1
Host: cloud.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uplify.us/
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Req-Id: LxzFdka6aB
X-server: lightning
X-page-id:
X-timing: 0.0515279769897461
X-timestamp: 1686342789
X-Host: cld-front1.q
X-Upstream-Time: -
X-UA-Compatible: IE=Edge
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' blob: data: https://static.mail.corpcloud.mail.ru https://auth.mail.ru https://portal.mail.ru https://bar.love.mail.ru https://xray.mail.ru https://ad.mail.ru https://mc.yandex.ru https://an.yandex.ru https://yandex.ru https://firebase.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://vk.com https://ok.ru https://corsapi.imgsmail.ru https://top-fwz1.mail.ru https://r3.mail.ru https://cloud.mail.ru https://uploader.cloud.mail.ru https://zipview.mail.ru; script-src 'self' 'report-sample' 'nonce-LxzFdka6aB' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://limg.imgsmail.ru; img-src blob: data: https://static.mail.corpcloud.mail.ru https://rs.mail.ru https://filin.mail.ru https://an.mail.ru https://b2.mail.ru https://ad.mail.ru https://top-fwz1.mail.ru https://trk.mail.ru https://xray.mail.ru https://stat.radar.imgsmail.ru https://img1.imgsmail.ru https://www.tns-counter.ru https://www.google-analytics.com https://counter.yadro.ru https://r.mradx.net https://d.mradx.net https://an.yandex.ru https://bs.yandex.ru https://mc.yandex.ru https://avatars.mds.yandex.net https://ad.adriver.ru https://vk.com https://*.userapi.com https://wcm-ru.frontend.weborama.fr https://cloud.imgsmail.ru https://thumb.cloud.mail.ru https://cloud.mail.ru https://r3.mail.ru https://docs.mail.ru https://apf.mail.ru https://zipview.mail.ru https://mail.radar.imgsmail.ru https://favicon.yandex.net; style-src 'self' 'report-sample' 'unsafe-inline' https://static.mail.corpcloud.mail.ru https://limg.imgsmail.ru https://r.mradx.net https://fonts.googleapis.com https://cloud.imgsmail.ru https://cloud.mail.ru; font-src 'self' data: https://static.mail.corpcloud.mail.ru https://fonts.googleapis.com https://fonts.gstatic.com https://yastatic.net https://cloud.imgsmail.ru https://top-fwz1.mail.ru https://cloud.mail.ru; media-src 'self' https://cloud-common-static.hb.bizmrg.com https://r.mradx.net https://top-fwz1.mail.ru https://cloud.mail.ru; object-src blob: 'self'; worker-src 'self'; manifest-src 'self' https://static.mail.corpcloud.mail.ru; frame-src 'self' https://o2.mail.ru https://www.google.com https://top-fwz1.mail.ru https://cloud.mail.ru https://amr.mrgcdn.ru https://zipview.mail.ru; frame-ancestors 'self'; child-src 'self'; upgrade-insecure-requests ; report-uri https://cspreport.mail.ru/cloud/;
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 09 Jun 2022 20:33:09 GMT
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109
200 OK 43 B URL POST HTTP/1.1 mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109
IP
ASN #205830 Mrgroup Investments Limited
Requested by https://www.uplify.us/s/8g1pi
Certificate IssuerGlobalSign nv-sa
Subjectmytopf.com
Fingerprint4E:23:FB:8C:88:95:D4:DD:CE:AE:21:B2:77:8C:10:23:99:12:FA:85
ValidityTue, 18 Apr 2023 14:40:41 GMT - Sun, 19 May 2024 14:40:40 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASEIwgtNm8c1ethEBTWkLimT8aYNj8Gpgxtqb0P1c_T9UJM3x2wEgSfBFi-Jktz7PM0g4TRZoJlc_za5Kl9shnB67VhI3z9GMr90N5jnDrRjRQsY54hvblM6hGV9HsDOy5mwOyma-rzZKp58AtKpOzgXOChQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASENQ85SKH8ULSVlGUdCULcWQaYMoXoCc1OA98xzUEYFaqmupSdOtiedWaExWMJW5ladSm6PwqBJzb2r7W35DxLJRoRp4NLr_34udP71DB3Ivf3BjZJ9ZcbT5DzBKSYp0_OYXj_rwWGRlwXsYbcSZVtqLnFw; path=/; expires=Sun, 09-Jun-24 20:33:09 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
ocsp.pki.goog/gts1c3
471 B IP
Hash fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 57757c4fc14cede98e5ec5f4b7ef1189
0c8e5663c4f9da61309b2375d484ad276d362694
0bff8e6f6a9190055f043962d3b68d4a15e77488f49fe01cbf6fa00490e6c106
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 16:22:10 GMT
ETag: "0c8e5663c4f9da61309b2375d484ad276d362694"
Last-Modified: Fri, 09 Jun 2023 16:22:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3535
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e31c4ab4f3-OSL
www.googletagmanager.com/gtag/js?id=UA-43037165-12
200 OK 48 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-43037165-12
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (2271)
Hash 77d92b82c3d55aff600e8296cfe49427
ea2d0a21db1482a4c368c9da9582060bd1ec298e
bfbabb9b7106d6af98f01954a0d5c3d60eac3c621b00d857eeee969f01f5f3ac
GET /gtag/js?id=UA-43037165-12 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Origin, Accept-Encoding
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
date: Fri, 09 Jun 2023 20:33:09 GMT
expires: Fri, 09 Jun 2023 20:33:09 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Jun 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 01adabe65dd6c88274e106bbdc7608eb
afa1f0c96787949cbc623732476019496900125a
b11b66b528ad15e8e8e6b835da96ab54299d2b60881c77b4b6f4ae21f772f97d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 19:58:13 GMT
ETag: "afa1f0c96787949cbc623732476019496900125a"
Last-Modified: Fri, 09 Jun 2023 19:58:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1617
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e39d73b4f3-OSL
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 244b3a579980d57c32956879f70823e6
f6ee380834ea54064410b5f54c873396dda30571
9436739a94b922d93d69bdf135417d48f62c44863464a741b8ef7f2e5636ae3a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:45:27 GMT
ETag: "f6ee380834ea54064410b5f54c873396dda30571"
Last-Modified: Fri, 09 Jun 2023 18:45:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 46
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e3a9f61bfa-OSL
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 244b3a579980d57c32956879f70823e6
f6ee380834ea54064410b5f54c873396dda30571
9436739a94b922d93d69bdf135417d48f62c44863464a741b8ef7f2e5636ae3a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:45:27 GMT
ETag: "f6ee380834ea54064410b5f54c873396dda30571"
Last-Modified: Fri, 09 Jun 2023 18:45:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 46
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e3ad7eb4f3-OSL
r.mradx.net/img/BC/44BE61.css
200 OK 2.7 kB URL GET HTTP/1.1 r.mradx.net/img/BC/44BE61.css
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mradx.net
Fingerprint38:D6:C5:0B:2A:4C:E9:B0:EC:D4:29:0C:45:9B:1F:CE:96:79:CD:7E
ValidityThu, 14 Jul 2022 08:28:17 GMT - Tue, 15 Aug 2023 08:28:16 GMT
File type ASCII text, with very long lines (13285), with no line terminators
Hash 280c3244db36bba7cbe2966ff1742524
bc44be6194ec20fc5be671558a70d9792572905e
c44de69c95bddbb0a4ac20445ed63f989fee9bbd0510ed3df35ec2dc8f1561f3
GET /img/BC/44BE61.css HTTP/1.1
Host: r.mradx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/css
Last-Modified: Thu, 05 Dec 2019 16:54:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5de93629-33e5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png
200 OK 90 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash 1de769a0667acf8f2d9fab551c75e910
9a04a33844e933994b1b84da23c1b4cb87f77d39
fe8cb82166c8c7bcc97bec9d7dcd5c5335fd40360c5122afcd3965bc3c2cac3c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 90489
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "1de769a0667acf8f2d9fab551c75e910"
x-amz-request-id: tx000000000000004c45f0c-0064785070-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 24c40d5a908174b1f747fe598f17c474
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90
204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90
IP
Requested by https://www.uplify.us/s/8g1pi
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.uplify.us
date: Fri, 09 Jun 2023 20:33:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png
200 OK 1.5 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 7c1204cbdd9bf043892eea20ce2d843c
cc0277392f1bc09c2068d2e349c9545acfec59ab
a3d5e747427e6894a65f676534564c4c9f4f12f7169fb62dfcf03322df988807
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 1518
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: "7c1204cbdd9bf043892eea20ce2d843c"
x-amz-request-id: tx000000000000004c45fa3-0064785070-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 380af5a8aa6091a91b8fdd7e20372966
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/RuStore.svg
200 OK 4.6 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/RuStore.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (10240)
Hash d5e347d924ac866b1b38ec7b928ec354
e57e73ce8986c44709222c9f7ac6ff798ff0d1a9
8553b7aef2a3a6f01ade397bf843ae11027c9e00c170037bf9cac26a01ed0bdf
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/RuStore.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: W/"48aa674513be8c235aea18fbef603ff2"
x-amz-request-id: tx00000000000003c262001-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: fdb295a3a2de2df20a6d5d14814fad33
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo3%402x.png
200 OK 1.9 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo3%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 76 x 76, 8-bit colormap, non-interlaced\012- data
Hash 15bb5d95c4bdd5879d6fbe00f5eb9d2f
926d6c3b2b2641b60df7b7cff6fc981a0a72ea72
db8cfa5f8e911bcf4ba25d6cbc01b62e04145c44ec7ce26954f7f50f3b140072
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo3%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 1856
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "15bb5d95c4bdd5879d6fbe00f5eb9d2f"
x-amz-request-id: tx000000000000004cd3723-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: b5d3a8eb63f3b35c9b95feaed2cf9370
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/rocket.png
200 OK 27 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/rocket.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 326 x 327, 8-bit/color RGBA, non-interlaced\012- data
Hash 188d7df29a4970298dcab676a27fd8b1
dc99c6f10879bb111c7d9590f502925b9316dc9a
7a8a0a0e7343dcf3a3e47a43c4a7ab79481f7e53367b7c268865956f5f611284
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/rocket.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/png
content-length: 27111
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "188d7df29a4970298dcab676a27fd8b1"
x-amz-request-id: tx00000000000000389da8b-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 7ee7ce52eaffa79f96aaf9dbad32df0f
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/label-sale.png
200 OK 10 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/label-sale.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 101 x 74, 8-bit/color RGBA, non-interlaced\012- data
Hash b5f1d6425dfa16d756716264a9686786
ada5a86ae097a7ea77dad927b0ab48402067d198
e2e8436ac7ec51d8d470e4ad58884f432773505bf5d77979cf4c8cc7b5333f58
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/label-sale.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/png
content-length: 10435
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "b5f1d6425dfa16d756716264a9686786"
x-amz-request-id: tx00000000000000389dacc-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: a7b76b7cabadcc8f713af2d106605b6f
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
limg.imgsmail.ru/pkgs/whiteline/2.119.0/inline.modern.js
200 OK 31 kB URL GET HTTP/2 limg.imgsmail.ru/pkgs/whiteline/2.119.0/inline.modern.js
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.imgsmail.ru
FingerprintD0:BD:83:05:95:38:BD:59:C6:34:E4:E5:48:AC:CB:EB:6D:7E:E3:35
ValidityTue, 14 Feb 2023 12:27:51 GMT - Sun, 17 Mar 2024 12:27:50 GMT
File type gzip compressed data, from Unix\012- data
Hash 4fe75ac618d86941dc4e72736f052ae1
f903da2afad5bb93920360d457565609862b3951
21b10532f9018973ee5188b3e1008b9782a4199e986d944cef20f1357de2f825
GET /pkgs/whiteline/2.119.0/inline.modern.js HTTP/1.1
Host: limg.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 17:04:01 GMT
etag: W/"647a2101-15818"
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
x-host: lf245.m.smailru.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-allow-origin: https://cloud.mail.ru
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansMedium.woff2
200 OK 24 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansMedium.woff2
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 23592, version 2.65\012- data
Hash e4b481c031939400826a582d1f0552a5
e163bbe77ab1b0bb9562c5bb4c134377c4d8f064
d2fc35afeae3275c15cacf708dc8d3d945384090e1f6a033ea0d4310faa057ca
GET /cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansMedium.woff2 HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: binary/octet-stream
content-length: 23592
last-modified: Tue, 30 May 2023 12:07:00 GMT
x-rgw-object-type: Normal
etag: "e4b481c031939400826a582d1f0552a5"
x-amz-request-id: tx00000000000003e516e33-006475f470-2a0a956-default
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 300
x-gg-cache-date: Tue, 30 May 2023 13:04:48 GMT
x-cdn-node: matrix6.i.smailru.net
x-req-id: a599c47a575061d67cd730c18c8c2d80
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host,X-CDN-Node,X-Req-Id
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansRegular.woff2
200 OK 24 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansRegular.woff2
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 24052, version 2.65\012- data
Hash 064e7b0a337cdb406a4d2eedc0f5797c
66470c3563abc6709b63998eaa5c11b3d422c267
64de25969a87921bf5b785c1e98ae687c5116d8c9b63fcfa8b56f091534e36cc
GET /cloud.landings/159524/static/72074e4/landing/common/fonts/MailSansRegular.woff2 HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: binary/octet-stream
content-length: 24052
last-modified: Tue, 30 May 2023 12:07:00 GMT
x-rgw-object-type: Normal
etag: "064e7b0a337cdb406a4d2eedc0f5797c"
x-amz-request-id: tx00000000000004520140e-006475f470-2933555-default
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 300
x-gg-cache-date: Tue, 30 May 2023 13:04:48 GMT
x-cdn-node: matrix6.i.smailru.net
x-req-id: 2782761311eb1809992bfbdf765dc702
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host,X-CDN-Node,X-Req-Id
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo2.svg
200 OK 2.0 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo2.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash b9edcb82037c1484384402c0ba708c51
5563060e178cd2fa5c40220e179ec26593ccc741
5a01ea7fc1ba6912d35c338bcf5ac2e94da7ef0cc5fddc33390e456969f56183
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo2.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"1b367b00f39ef9b978c54f184fa93340"
x-amz-request-id: tx00000000000003b6d0dfc-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: b354579f8f1a483a8bf39d211cbd3084
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
200 OK 24 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type ASCII text, with very long lines (2240)
Hash d15696ecdb7924cad209958227c292e7
5773bd7e4f359d6b90044fee9ce83a4922cf093c
48f250312f0bbe384db988aa18244aef6993658f5e58dc41ce45eddc777271eb
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: text/css
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: W/"77e902c2ab53482d5c960f81e58005c6"
x-amz-request-id: tx00000000000003b692d38-00648387ef-2948b12-default
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 300
x-gg-cache-date: Fri, 09 Jun 2023 20:13:35 GMT
x-cdn-node: matrix6.i.smailru.net
x-req-id: f96e33b25a58ed5e95d203a8359e43c0
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host,X-CDN-Node,X-Req-Id
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools3%402x.png
200 OK 119 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools3%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Size 119 kB (118643 bytes)
Hash 239ce943be8e9e8782ae3bd30cfcc708
aeae7f9b8d845189d26061418440907e92bb7936
6837041575512facb6bd5e8fc2dbd0783d78cc9a90fdf221b992c5c90313b5ba
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools3%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 118643
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "239ce943be8e9e8782ae3bd30cfcc708"
x-amz-request-id: tx000000000000004cd3611-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 26a8af663cc536c26359bb470f858ac8
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature2-desktop%402x.png
200 OK 111 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature2-desktop%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1240 x 820, 8-bit colormap, non-interlaced\012- data
Size 111 kB (110820 bytes)
Hash 3432bc66044521497abd0c03da3cf079
d65d36b3c6ea14122a6e136bd435a7ceadb9527b
fc89021fc5fd706d1a07d31dac6f29e9b02ea445691a5a61239febb5211b0673
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature2-desktop%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 110820
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: "3432bc66044521497abd0c03da3cf079"
x-amz-request-id: tx000000000000004cd35e6-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 8153c7bf48e227f34e62db9752cdae5d
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools6%402x.png
200 OK 96 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools6%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash ff73aa8a059795254da6332ed6dbe6ae
37eb2c214874bd0105fc0943530c7021dc9f8b5f
9a19e302402def492b90e0ba3040a4254ffa1c00fa96400274c6909fc5117b2c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools6%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 96254
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "ff73aa8a059795254da6332ed6dbe6ae"
x-amz-request-id: tx00000000000000389da48-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 65c54b97a97084600792c6dc7177007d
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
portal.mail.ru/NaviData?mac=1&Socials=1&ldata=1&_=1686346739435
200 OK 54 B URL GET HTTP/1.1 portal.mail.ru/NaviData?mac=1&Socials=1&ldata=1&_=1686346739435
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f407a48b303028838ef9f7b780c96d16
e8848c0703ba21da44e6ea373d1ac65f16037e84
297e4faf8ec3c6a0bb35d208afab689c291200959518500cc579d576e11458cd
GET /NaviData?mac=1&Socials=1&ldata=1&_=1686346739435 HTTP/1.1
Host: portal.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloud.mail.ru/
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 54
Connection: keep-alive
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-origin: https://cloud.mail.ru
set-cookie: mrcu=356e22ca35c072004f9fbb6a26c3; Path=/; Domain=mail.ru; Expires=Thu, 09 Jun 2033 20:33:10 GMT; HttpOnly
x-mru-request-id: 001bb43b-3002-9045-8165-22cb1a6b9af0
x-envoy-upstream-service-time: 0
X-Host: spf2.m.smailru.net
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools5%402x.png
200 OK 86 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools5%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash b6f74965ba1f68950ee772dd1145e8a7
9e295348b04e78beb9a54f44612d939082f33e9c
b0d253908f629d2974fbfc011c41778c1b1b7ca677576a03ea226eea22d6e02c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools5%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 86418
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "b6f74965ba1f68950ee772dd1145e8a7"
x-amz-request-id: tx00000000000000389da49-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: dbc0ba94b03eda4302cffbb195781dcc
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools4%402x.png
200 OK 92 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools4%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash 5d376f3ab837325d8d27d5d530041921
91b06b3c299fce67c207c5e358e962482df475ed
007d8884969ceded503f868a9459affe7332f031054dc19ed3b172b9d7199324
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools4%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 92390
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "5d376f3ab837325d8d27d5d530041921"
x-amz-request-id: tx000000000000004cd3616-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 2f4923fffb2827f81e4325123278ebac
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools8%402x.png
200 OK 74 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools8%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash eec8ad4d5ef4b8fe066ef5597fc83aa0
bd856e1e63d73ab32983aa8163e24930c2f1962a
6fc091c7f56434c14cf6635171a6f68ce87dd69309b4e33f391c5efd4975639f
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools8%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 74005
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "eec8ad4d5ef4b8fe066ef5597fc83aa0"
x-amz-request-id: tx000000000000004cd3615-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 7f667f302ca4f370d91026e79003cf1f
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-desktop%402x.png
200 OK 92 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-desktop%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 911 x 655, 8-bit colormap, non-interlaced\012- data
Hash 8041354df40b6473103fd7090b737a5d
5743b4be72db30e62de2ab9de9283069c68b710e
95b7378972104f2f565fb6b4819d009eb64a41ac689d16261fec52619fa9232b
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-desktop%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 91845
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: "8041354df40b6473103fd7090b737a5d"
x-amz-request-id: tx000000000000004d9bb1b-0064785486-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:19:18 GMT
x-cdn-node: matrix2.i
x-req-id: c2cefd04380ab7f2187d9e6e39bb1b61
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools7%402x.png
200 OK 129 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools7%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Size 129 kB (129129 bytes)
Hash 8be6c30c8365761ead728ffc33d1ddd5
bf9653deb1d9af073169b22bd995e46f1358d379
b212a0c01733d013c072dec4c243eb1953f80aa48e429e384fd6586e85b264a1
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools7%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 129129
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "8be6c30c8365761ead728ffc33d1ddd5"
x-amz-request-id: tx00000000000000389da47-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: cb07fe987a09c41f0742dc2036b19f8b
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.consentmanager.mgr.consensu.org/delivery/cmp_en.min.js
200 OK 104 kB URL GET HTTP/2 cdn.consentmanager.mgr.consensu.org/delivery/cmp_en.min.js
IP
ASN #60068 Datacamp Limited
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintDE:52:2E:66:82:AA:D0:5D:6C:6B:79:14:20:2E:AD:05:28:99:E3:7A
ValidityFri, 07 Apr 2023 07:05:01 GMT - Thu, 06 Jul 2023 07:05:00 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 104 kB (104516 bytes)
Hash 51245c1229b0443114944e7cc7c4ac9a
3a3f8c8fee2e656459bd08280efb8b627e2652ff
da06c11bb0bfe0c6225346c3e8162598b3b30ebd9c11ce585b2f58317b72f02e
GET /delivery/cmp_en.min.js HTTP/1.1
Host: cdn.consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 16 May 2023 21:16:07 GMT
etag: W/"7a24f-5fbd6146093c0"
cache-control: max-age=1800, public
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
server: CDN77-Turbo
x-77-nzt: AblMCQ21esH/0QEAAA
x-77-nzt-ray: c0a4cc28e1899f74868c8364e031cf10
x-accel-expires: @1686344125
x-accel-date: 1686342325
x-cache: HIT
x-age: 465
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/attention/att-desktop%402x.png
200 OK 123 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/attention/att-desktop%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 956 x 886, 8-bit colormap, non-interlaced\012- data
Size 123 kB (122727 bytes)
Hash cb80fa6e781af4665d42fc045037d1d3
ec98e649fa0e52d3e5170e94265e21eb06996b2a
29fa576119b6ecca65b4abcb31d17ccc5be92a82f4d718f2f84b6d8554f6d14c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/attention/att-desktop%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 122727
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: "cb80fa6e781af4665d42fc045037d1d3"
x-amz-request-id: tx00000000000000399e69f-0064785486-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:19:18 GMT
x-cdn-node: matrix2.i
x-req-id: 22cabe6b1394d86e2afb0996e8e9e734
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
limg.imgsmail.ru/pkgs/whiteline/2.119.0/external.modern.js
200 OK 89 kB URL GET HTTP/2 limg.imgsmail.ru/pkgs/whiteline/2.119.0/external.modern.js
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.imgsmail.ru
FingerprintD0:BD:83:05:95:38:BD:59:C6:34:E4:E5:48:AC:CB:EB:6D:7E:E3:35
ValidityTue, 14 Feb 2023 12:27:51 GMT - Sun, 17 Mar 2024 12:27:50 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 80c0ee942e1e5c5b82f2ab1291aca012
892b472fe794f51400e315e0108a76b319b7597f
2280f084a9a5602e968f73a61b89be1298980fc9e15ea87fdf74d532a95fe584
GET /pkgs/whiteline/2.119.0/external.modern.js HTTP/1.1
Host: limg.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 17:04:01 GMT
etag: W/"647a2101-49f36"
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools2%402x.png
200 OK 99 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools2%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash 93e4b3f63a857861d18bd8010b10d7a5
981c2062f4238bccae90f565a7e0fef1766b527d
0117dfc1900df32da53019d2713edc9c8c332ba9cbe1f459c04cf8653668a932
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools2%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 99040
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "93e4b3f63a857861d18bd8010b10d7a5"
x-amz-request-id: tx00000000000000389da44-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 0f7c4be048adc5e0c181b154a6569746
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature3-desktop%402x.png
200 OK 166 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature3-desktop%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1240 x 820, 8-bit colormap, non-interlaced\012- data
Size 166 kB (166288 bytes)
Hash 6cc31522497966afc4870e2397a8bf6a
f1b1da1c6eaf1d119a1fbd3a55f10082d8a2de16
8eeda13f06cc037882d3c014a906fa9a7f22063f9988ea13a906507297b5de35
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature3-desktop%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 166288
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "6cc31522497966afc4870e2397a8bf6a"
x-amz-request-id: tx00000000000000389da2b-0064785070-2aa4313-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 3ea862cefd690a6948ef2a525693ac74
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/hero/hero-desktop.png
200 OK 208 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/hero/hero-desktop.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1065 x 962, 8-bit colormap, non-interlaced\012- data
Size 208 kB (208080 bytes)
Hash 1d50e2f80b3aae4858ead6784cbd017e
17669ea01024feb65b12434b1098f680b133ac58
17d65717116d4ad371e28f03154a68e7e6f07644c45f278d1a65984272d726cc
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/hero/hero-desktop.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 208080
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "1d50e2f80b3aae4858ead6784cbd017e"
x-amz-request-id: tx000000000000004d9bae2-0064785486-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:19:18 GMT
x-cdn-node: matrix2.i
x-req-id: 4652d691176e42b6d485420b05ffb3a1
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 9f643a1ea64e14a82e3dd02fb5f9401c
fa301232f73b1371d0236bb09204e4cb2249c479
44dce876109635167372cea07f1de8faa761f6a013e56800e67a7b70f6e0fbe8
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 19:44:43 GMT
ETag: "fa301232f73b1371d0236bb09204e4cb2249c479"
Last-Modified: Fri, 09 Jun 2023 19:44:44 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 245
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e86d64b4f3-OSL
rs.mail.ru/ns.gif?n=374383495,374383493,374383505,374383512,374383473,374383509,374383471&_=1686897304627
200 OK 43 B URL GET HTTP/2 rs.mail.ru/ns.gif?n=374383495,374383493,374383505,374383512,374383473,374383509,374383471&_=1686897304627
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ns.gif?n=374383495,374383493,374383505,374383512,374383473,374383509,374383471&_=1686897304627 HTTP/1.1
Host: rs.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; mtrc=%7B%22utm_source%22%3A%22Twitch%22%2C%22utm_medium%22%3A%22cpm%22%2C%22utm_content%22%3A%22pictureinpicture%22%2C%22utm_campaign%22%3A%22media-cloud05062023%22%2C%22utm_term%22%3A%22%22%2C%22mt_click_id%22%3A%22mt-zewp68-1686342788-4021853142%22%2C%22mytrackerid%22%3A52864%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/gif
content-length: 43
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_4-6.svg
200 OK 475 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_4-6.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash f78a8a77af0aba193652372f8bd00485
a391581ff276a8b72aa622f87f02ac13efb831e7
e91ef1f3015ed21fc4840255c31e364b4b758e0ef9bdb9a07926c540acb9ccbc
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_4-6.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"28be6bc61c8d90044238e7bf91d8d373"
x-amz-request-id: tx00000000000003b6d0e0e-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: cd3be31c5700d48642e1ba09b896fb1f
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
rs.mail.ru/bulkstat/?type=imp&banner_ids=61021861,61021860,61021859,61021858,61021857,90824768,61021856,61021854&_=1686420015008
200 OK 43 B URL GET HTTP/2 rs.mail.ru/bulkstat/?type=imp&banner_ids=61021861,61021860,61021859,61021858,61021857,90824768,61021856,61021854&_=1686420015008
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /bulkstat/?type=imp&banner_ids=61021861,61021860,61021859,61021858,61021857,90824768,61021856,61021854&_=1686420015008 HTTP/1.1
Host: rs.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; mtrc=%7B%22utm_source%22%3A%22Twitch%22%2C%22utm_medium%22%3A%22cpm%22%2C%22utm_content%22%3A%22pictureinpicture%22%2C%22utm_campaign%22%3A%22media-cloud05062023%22%2C%22utm_term%22%3A%22%22%2C%22mt_click_id%22%3A%22mt-zewp68-1686342788-4021853142%22%2C%22mytrackerid%22%3A52864%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/qr.svg
200 OK 2.0 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/qr.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 158488a4b8bc71e5c8562426d6d87c5f
59e43b410734649c029016451864f99178586977
6e9201dd8230494ef78c73fee0ebd299f869fed8791159b1cb0f9851954a7a5b
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/qr.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"5b9d96373a200d8b0d52684bf3a2e2f9"
x-amz-request-id: tx00000000000003c262002-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 19e7f70f8e79ddcc614d397e9ab2f3f1
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature1-desk%402x.png
200 OK 392 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature1-desk%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1240 x 820, 8-bit/color RGBA, non-interlaced\012- data
Size 392 kB (391927 bytes)
Hash 03909e76da0d65ce0a893dda0d960c3d
b569323004779b322e7fa0b94a8fd4fcc62fd829
c73219d6cd348f5de230623143b0c4aefecf3b686082c40bbb7f81d293d25910
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/features/feature1-desk%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 391927
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: "03909e76da0d65ce0a893dda0d960c3d"
x-amz-request-id: tx000000000000004cd35e3-0064785070-2948b12-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 89d59c60000b28065344a49023371485
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=8225&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790100&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
200 OK 43 B URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=8225&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790100&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=5232&did=1&cfdid=8225&t=pv.d_ncs.d_ancs.d_bncs.cf.cfx&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790100&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59& HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: __cmpcc=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Content-Length: 43
Content-Type: image/gif
cdn.consentmanager.mgr.consensu.org/delivery/img/logo1575991667x2127.gif
200 OK 1.2 kB URL GET HTTP/2 cdn.consentmanager.mgr.consensu.org/delivery/img/logo1575991667x2127.gif
IP
ASN #60068 Datacamp Limited
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintDE:52:2E:66:82:AA:D0:5D:6C:6B:79:14:20:2E:AD:05:28:99:E3:7A
ValidityFri, 07 Apr 2023 07:05:01 GMT - Thu, 06 Jul 2023 07:05:00 GMT
File type GIF image data, version 89a, 50 x 50\012- data
Hash ed26ab8d6e303e5c81f75e2320d08bfa
7465ac5fa4d3f699346efc438c74508ea60b1501
c1a7a912275ca79d36a5ad5bc682b5d95e06bcb9630f08007d2c560e092f5aab
GET /delivery/img/logo1575991667x2127.gif HTTP/1.1
Host: cdn.consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/gif
content-length: 1161
last-modified: Tue, 08 Feb 2022 14:38:47 GMT
cache-control: max-age=86400, public
etag: "62028077-489"
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
server: CDN77-Turbo
x-77-nzt: AblMCQ1C0m7/kz8BAA
x-77-nzt-ray: c0a4cc28e1899f74868c83647094002b
x-accel-expires: @1686347379
x-accel-date: 1686260979
x-cache: HIT
x-age: 81811
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.consentmanager.mgr.consensu.org/delivery/flags/en.gif
200 OK 384 B URL GET HTTP/2 cdn.consentmanager.mgr.consensu.org/delivery/flags/en.gif
IP
ASN #60068 Datacamp Limited
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintDE:52:2E:66:82:AA:D0:5D:6C:6B:79:14:20:2E:AD:05:28:99:E3:7A
ValidityFri, 07 Apr 2023 07:05:01 GMT - Thu, 06 Jul 2023 07:05:00 GMT
File type GIF image data, version 89a, 16 x 11\012- data
Hash 64584f6cea5d8db0b272e15d939dabcc
5ae721fb2caa25179b715e082fbb476e9bd88181
eee4cf12a666b414c57a7f3ad86679b3f8d3baeb0914c5f2ec68243d9375d881
GET /delivery/flags/en.gif HTTP/1.1
Host: cdn.consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/gif
content-length: 384
x-accel-version: 0.01
last-modified: Mon, 14 Jun 2021 21:37:37 GMT
etag: "180-5c4c0aa828a40"
vary: Accept-Encoding
cache-control: max-age=86400, public
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
server: CDN77-Turbo
x-77-nzt: AblMCQ3LWjL/p0sBAA
x-77-nzt-ray: c0a4cc28e1899f74868c83643c5d4f2b
x-accel-expires: @1686344287
x-accel-date: 1686257887
x-cache: HIT
x-age: 84903
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo5.svg
200 OK 722 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo5.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash c4e163b29398126b803c874e629e0189
cb1298be8601e48d5473324f5afea1938d593bcf
c08f7b958e4d50714363edd4f173dca51853a7bc22bcc31b3d063b72b7fb0e2f
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo5.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"794e9b8ba6da14e589065f6204b5a25f"
x-amz-request-id: tx0000000000000326a1cab-0064838907-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: c8e17ecdd452746ef0cdc2c71707d2a0
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools9%402x.png
200 OK 791 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools9%402x.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type PNG image data, 1040 x 624, 8-bit/color RGBA, non-interlaced\012- data
Size 791 kB (790862 bytes)
Hash 8e2d0c974b313c38154c376f81367070
51b17a27ea194f16172225c505f2eb85b34cb6a2
9e2662621907e992b633aed76521ddfb135655bcc184d675948f94f8aa3deb4c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools9%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 790862
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "8e2d0c974b313c38154c376f81367070"
x-amz-request-id: tx000000000000004c45f21-0064785070-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: c89d3109ed6c10fb9f1328526fa34ccf
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
consentmanager.mgr.consensu.org/delivery/consent.php?id=5232&p=4&v=0&cvc=__U_&cpc=__&c=BPtI309PtI309AfTQBENDXAAAAAAAA&l=EN&lv=41076&d=1&ct=7&e=&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&e2=&e3=&i=&sv=2&dv=59&cookieallowed=1®=1&rk=GDPR&usps=1---
200 OK 43 B URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/consent.php?id=5232&p=4&v=0&cvc=__U_&cpc=__&c=BPtI309PtI309AfTQBENDXAAAAAAAA&l=EN&lv=41076&d=1&ct=7&e=&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&e2=&e3=&i=&sv=2&dv=59&cookieallowed=1®=1&rk=GDPR&usps=1---
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/consent.php?id=5232&p=4&v=0&cvc=__U_&cpc=__&c=BPtI309PtI309AfTQBENDXAAAAAAAA&l=EN&lv=41076&d=1&ct=7&e=&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&e2=&e3=&i=&sv=2&dv=59&cookieallowed=1®=1&rk=GDPR&usps=1--- HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: __cmpcc=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
x-cf: 0
x-ct: 4
x-r: GDPR
x-ccc: empty
Set-Cookie: __cmpconsents1=BPtI309PtI309AfTQBENDXAAAAAAAA; Expires=Fri, 23-Jun-2023 20:33:10 GMT; Domain=.consensu.org; Path=/; SameSite=None; Secure
__cmpcvcs1=___U__; Expires=Fri, 23-Jun-2023 20:33:10 GMT; Domain=.consensu.org; Path=/; SameSite=None; Secure
__cmpcpcs1=____; Expires=Fri, 23-Jun-2023 20:33:10 GMT; Domain=.consensu.org; Path=/; SameSite=None; Secure
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Content-Length: 43
Content-Type: image/gif
consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=1&t=cr&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790179&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
200 OK 43 B URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=1&t=cr&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790179&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=5232&did=1&cfdid=1&t=cr&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790179&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59& HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: __cmpcc=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Content-Length: 43
Content-Type: image/gif
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3617
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3587
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3587
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3145
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3130
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
cspreport.mail.ru/cloud/
200 OK 0 B IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint9F:A2:43:EA:AA:62:15:13:44:0D:15:75:17:47:4C:6B:E5:8E:10:1E
ValidityThu, 20 Oct 2022 09:52:31 GMT - Tue, 21 Nov 2023 09:52:30 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cloud/ HTTP/1.1
Host: cspreport.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3653
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: close
Timing-Allow-Origin: *
xray.mail.ru/batch?p=whiteline&r=https%3A%2F%2Fwww.uplify.us%2F&pgid=lip0yfwb.a1
200 OK 43 B URL POST HTTP/2 xray.mail.ru/batch?p=whiteline&r=https%3A%2F%2Fwww.uplify.us%2F&pgid=lip0yfwb.a1
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
POST /batch?p=whiteline&r=https%3A%2F%2Fwww.uplify.us%2F&pgid=lip0yfwb.a1 HTTP/1.1
Host: xray.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2113
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; mtrc=%7B%22utm_source%22%3A%22Twitch%22%2C%22utm_medium%22%3A%22cpm%22%2C%22utm_content%22%3A%22pictureinpicture%22%2C%22utm_campaign%22%3A%22media-cloud05062023%22%2C%22utm_term%22%3A%22%22%2C%22mt_click_id%22%3A%22mt-zewp68-1686342788-4021853142%22%2C%22mytrackerid%22%3A52864%7D; mrcu=356e22ca35c072004f9fbb6a26c3; __cmpcvcs1=___U__; __cmpcpcs1=____; __cmpconsents1=BPtI309PtI309AfTQBENDXAAAAAAAA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: image/gif
content-length: 43
x-request-id: 8519:69d24cc800000001
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-max-age: 604800
access-control-allow-headers: DNT, Authorization, Origin, X-Requested-With, X-Host, X-Request-Id, Timing-Allow-Origin, Content-Type, Accept, Content-Range, Range, Keep-Alive, User-Agent, If-Modified-Since, Cache-Control
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, X-Host, X-Request-ID
vary: Origin
x-content-type-options: nosniff
x-host: is-radar67.i (343)
timing-allow-origin: *
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Firefox-Spdy: h2
xray.mail.ru/update?p=cloud&t=landingsundefined&v=0&i=build_loaded:0&rnd=0.048011301776722415
200 OK 43 B URL GET HTTP/2 xray.mail.ru/update?p=cloud&t=landingsundefined&v=0&i=build_loaded:0&rnd=0.048011301776722415
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /update?p=cloud&t=landingsundefined&v=0&i=build_loaded:0&rnd=0.048011301776722415 HTTP/1.1
Host: xray.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; mtrc=%7B%22utm_source%22%3A%22Twitch%22%2C%22utm_medium%22%3A%22cpm%22%2C%22utm_content%22%3A%22pictureinpicture%22%2C%22utm_campaign%22%3A%22media-cloud05062023%22%2C%22utm_term%22%3A%22%22%2C%22mt_click_id%22%3A%22mt-zewp68-1686342788-4021853142%22%2C%22mytrackerid%22%3A52864%7D; mrcu=356e22ca35c072004f9fbb6a26c3; __cmpcvcs1=___U__; __cmpcpcs1=____; __cmpconsents1=BPtI309PtI309AfTQBENDXAAAAAAAA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: image/gif
content-length: 43
x-request-id: 8519:69d24cff00000001
x-content-type-options: nosniff
x-host: is-radar67.i (50)
timing-allow-origin: *
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo4.svg
200 OK 1.2 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo4.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1257), with no line terminators
Hash 9ec5f5cc9ba80ef87e40317e708ae9fe
83a293d32fd9e6cb4f99574c145af08e7ebcaf72
17c65fd00243e68f4a4478c801924fda5442df7159354c3810a9dcc87280c833
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo4.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"409d32cc8a6bb671e1125104aa3d1f78"
x-amz-request-id: tx00000000000003b6d0e12-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 977313f56c0978cc8096220ed257e06b
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-footer-cloud.svg
200 OK 3.9 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-footer-cloud.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4130), with no line terminators
Hash 721b05acf0ecee006625f3a38c67270c
55f2674581b84d6edb03ab0f6368a191062df07e
d98fc0d8c98ad9032394814932e5df979351e2a4302dc7e2d6a28ab83c6c4c83
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-footer-cloud.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"d3df848eaab317146d4be71a8f9b6a77"
x-amz-request-id: tx00000000000003c262004-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 4b10a1500c28dd957956047c7157b4ec
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/favicon.svg
404 Not Found 216 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/favicon.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type XML document, ASCII text, with no line terminators
Hash 5a596142c99df5fc16ef8e22695a2b9e
e75d768ed10b751816a2b7de3a96750c77b4de68
08a4d92dcc46dee0fc9c00f8a1e30aacdf6df11b14a17e3640db0405426bb6f6
GET /cloud.landings/159524/static/72074e4/favicon.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: application/xml
x-amz-request-id: tx00000000000003273f9b6-0064838ba0-2aa4313-default
x-cdn-node: matrix6.i.smailru.net
x-req-id: 3a75f3aa718bdac4129ad9cd075a732c
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host,X-CDN-Node,X-Req-Id
X-Firefox-Spdy: h2
consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790123&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
200 OK 43 B URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/info/?id=5232&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790123&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59&
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6f81c41597d3f5a336f458822cc0c32a
8cd77a54b38f1fb376b45af2eaab8f5982523b8d
5704a2e9f2f7ce43a79f9b407f1aedcfd50223cbe8bd2f71ff8c5c819e469cbc
GET /delivery/info/?id=5232&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&o=1686342790123&l=EN&lv=41076&d=1&ct=14&e=&e2=&e3=&i=&sv=2&dv=59& HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: __cmpcc=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Content-Length: 43
Content-Type: image/gif
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo1.svg
200 OK 970 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo1.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1034), with no line terminators
Hash 800c1974d98cd6e86b77b57bd5604e4b
36a0694d2f41166e882f069c2559cbc4fc3327e6
23c1ad2a7ed6da1f0e2e3f063d00e8657cff561f6dd6421b7aeb7c8781c80553
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo1.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"2195892f9b4d5593eeb4d9d775764cf5"
x-amz-request-id: tx00000000000003c261ff1-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 1e6475766e965781282b6cf555e049df
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo6.svg
200 OK 1.2 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo6.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1271), with no line terminators
Hash eceb2fef38ba8b69e6a6565915ee61c1
d3b0209791d3d33c673956813e6646aaf797a512
a5d09e2e6cbe2ed110db7d3a50615de7255c671e59699970acec06a814af5ac3
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo6.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"e3f0d3b2aa148044380b9d1359981f2d"
x-amz-request-id: tx00000000000003b6d0dff-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: ea249b3abc301e1fa6e189c8d3bc2711
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_5-0.svg
200 OK 1.9 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_5-0.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1881), with no line terminators
Hash 34153618c32c3cb25e9919a90c216044
311028e63173d553d5a9df4dae1bde9f437a3422
85220da3e2e44131ced508a0bbb9f586df62ce7da0827129167ccad8007be85d
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/stars_5-0.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"bdd4d39947af9dd388373c3844bd3aa1"
x-amz-request-id: tx00000000000003c35a20a-0064838bb3-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:29:39 GMT
x-cdn-node: matrix2.i
x-req-id: 0117d2bcf691c40891ed41e2aead887f
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppGallery.svg
200 OK 8.5 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppGallery.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8568), with no line terminators
Hash 431995a1d0406ca654931f904a717dc0
97a90c993fa3e78b2a65522109f70cd6eed09fa7
d3b83b75bf06c491afed9e40b4720d0b4a9c8170e284f7d8c3f9e5a0ff99a0d6
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppGallery.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: W/"d8156c4acb51803b6739be4750e11615"
x-amz-request-id: tx0000000000000326a1cbe-0064838907-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: ad0804d31fd255b95809582c0a9050a0
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
rs.mail.ru/pixel/AACe9gEQxFeSAcKqkIooUv5qTgpGM880f4cj66KWGZO2g1V07VkO9hIifjBlBS6KWdRUaOiA5iCn8zH3b-LZbTAQy0PvuZ29pXZJjpJxncvFj4KwP-nfhoIpGnZbs9110YpS65i7Tq4Pa_KNqNE3n215JE_42_b5ne8GJEg5MTvOz7RSJYiqEwEpAAAA7no5r11xhGAStze94V5gpp2yANOqQ3XLIXHNIL_4k2ehQzKL2gAi9pOou2vKvXCq.gif?_=1687266446007
200 OK 43 B URL GET HTTP/2 rs.mail.ru/pixel/AACe9gEQxFeSAcKqkIooUv5qTgpGM880f4cj66KWGZO2g1V07VkO9hIifjBlBS6KWdRUaOiA5iCn8zH3b-LZbTAQy0PvuZ29pXZJjpJxncvFj4KwP-nfhoIpGnZbs9110YpS65i7Tq4Pa_KNqNE3n215JE_42_b5ne8GJEg5MTvOz7RSJYiqEwEpAAAA7no5r11xhGAStze94V5gpp2yANOqQ3XLIXHNIL_4k2ehQzKL2gAi9pOou2vKvXCq.gif?_=1687266446007
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/AACe9gEQxFeSAcKqkIooUv5qTgpGM880f4cj66KWGZO2g1V07VkO9hIifjBlBS6KWdRUaOiA5iCn8zH3b-LZbTAQy0PvuZ29pXZJjpJxncvFj4KwP-nfhoIpGnZbs9110YpS65i7Tq4Pa_KNqNE3n215JE_42_b5ne8GJEg5MTvOz7RSJYiqEwEpAAAA7no5r11xhGAStze94V5gpp2yANOqQ3XLIXHNIL_4k2ehQzKL2gAi9pOou2vKvXCq.gif?_=1687266446007 HTTP/1.1
Host: rs.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/gif
content-length: 43
cache-control: private, no-cache, no-store, private, no-cache, no-store
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSAo PSDo OUR BUS UNI NAV STA INT"
timing-allow-origin: *, *
X-Firefox-Spdy: h2
cdn.consentmanager.mgr.consensu.org/delivery/customdata/bV8xLndfNTIzMi5kXzY1NC54XzU5LnYucC50XzY1NC54dF81OQ.js
200 OK 164 kB URL GET HTTP/2 cdn.consentmanager.mgr.consensu.org/delivery/customdata/bV8xLndfNTIzMi5kXzY1NC54XzU5LnYucC50XzY1NC54dF81OQ.js
IP
ASN #60068 Datacamp Limited
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subject1376624012.rsc.cdn77.org
FingerprintDE:52:2E:66:82:AA:D0:5D:6C:6B:79:14:20:2E:AD:05:28:99:E3:7A
ValidityFri, 07 Apr 2023 07:05:01 GMT - Thu, 06 Jul 2023 07:05:00 GMT
File type ASCII text, with very long lines (42260)
Size 164 kB (163788 bytes)
Hash 2e27b9fd863c117c70c39948abfaa7e3
d331d09b89ca565dedb4af649e8a9977230735f6
2c25296108186657d6730b23a2feb0e059ccf0dee2aaba586f574bca972adce4
GET /delivery/customdata/bV8xLndfNTIzMi5kXzY1NC54XzU5LnYucC50XzY1NC54dF81OQ.js HTTP/1.1
Host: cdn.consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-xss-protection: 0
expires: Fri, 09 Jun 2023 20:42:54 GMT
cache-control: public, max-age=1800
last-modified: Fri, 09 Jun 2023 20:12:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-origin: *, *
access-control-allow-methods: POST, GET, OPTIONS, DELETE, PUT
access-control-max-age: 1000
x-content-type-options: nosniff
server: CDN77-Turbo
x-77-nzt: AblMCQ1ePHX/wAQAAA
x-77-nzt-ray: c0a4cc28e1899f74868c83648ad0cb1b
x-accel-expires: @1686343374
x-accel-date: 1686341574
x-cache: HIT
x-age: 1216
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo2.svg
200 OK 15 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo2.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (15260), with no line terminators
Hash 3f8eefbbc2891a1d534faa576ed1c669
1949f41cdc65eb5166232185e8054fb8a2280b69
5db2ab5c41036f11345438d6867f6760f7bcb632bb9ddb7af4d0dd8d9858ffc5
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo2.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"3f8eefbbc2891a1d534faa576ed1c669"
x-amz-request-id: tx00000000000003b6d0e10-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: e9bf0c0aa9a0f9c3417aedfcded92b87
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
consentmanager.mgr.consensu.org/delivery/cmp.php?__cmpcc=1&__cmpfcc=1&id=5232&o=1686342790&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&odw=0&dlt=1&l=en
200 OK 4.6 kB URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/cmp.php?__cmpcc=1&__cmpfcc=1&id=5232&o=1686342790&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&odw=0&dlt=1&l=en
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type ASCII text, with very long lines (4988), with no line terminators
Hash 40d9277388f7de7d7985914e37c6ee77
15e955182d52c338306d4e7a90a84cdb01d6aa86
55ad42847e21beb3ef4a7754a0f634f9f30dc84e6b1572c5c21312cc340de92a
GET /delivery/cmp.php?__cmpcc=1&__cmpfcc=1&id=5232&o=1686342790&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Cookie: __cmpcc=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Set-Cookie: __cmpcc=2; Expires=Fri, 09-Jun-2023 20:39:10 GMT; Path=/; SameSite=None; Secure
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppStore.svg
200 OK 7.3 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppStore.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7296), with no line terminators
Hash d6b60abebdd06baf26f68cb1591c5d4e
93c93acb8c68925847dacee3cf1f769e55f32a2c
426009cb3eba8b0abba177ee968c5b6a191eaf5057aa33e7eb01886d32eaf341
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/AppStore.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: W/"1611b61c9915aa1f8b6168546fa5f581"
x-amz-request-id: tx00000000000003b6d0e11-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: db4e8332d735dafbe75c22f5feb1cc26
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo4.svg
200 OK 831 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo4.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (891), with no line terminators
Hash 558c05254668253d76bca9f89ad5d2d2
d59e24abe2f4aa737a685262b24d8702a056f5e3
81250fb5f28022c2b2a8d557875bf87b55b93397d51e788450d5b6ce7380ab03
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo4.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"93875df734af77ba4b366d2b8783d1ed"
x-amz-request-id: tx00000000000003c261ff3-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 265b819231f01b21995faef1dec814aa
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
limg.imgsmail.ru/pkgs/whiteline/2.119.0/external.css
200 OK 52 kB URL GET HTTP/2 limg.imgsmail.ru/pkgs/whiteline/2.119.0/external.css
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.imgsmail.ru
FingerprintD0:BD:83:05:95:38:BD:59:C6:34:E4:E5:48:AC:CB:EB:6D:7E:E3:35
ValidityTue, 14 Feb 2023 12:27:51 GMT - Sun, 17 Mar 2024 12:27:50 GMT
File type ASCII text, with very long lines (52142), with no line terminators
Hash 17722758982a5c0f3fd4914ed29a20e0
b9ae1b95078bd5d7d5c998cedbb7d193e80b2531
79b09d07b6fdeeab8cabc9612ef688d7a7779bbfa9160accf666bbc9d4997faf
GET /pkgs/whiteline/2.119.0/external.css HTTP/1.1
Host: limg.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: text/css
last-modified: Fri, 02 Jun 2023 17:04:01 GMT
etag: W/"647a2101-cbae"
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
x-host: lf245.m.smailru.net
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-allow-origin: https://cloud.mail.ru
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.mail.ru/161606/js/build/landings.js
200 OK 209 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.mail.ru/161606/js/build/landings.js
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
Size 209 kB (209021 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cloud.mail.ru/161606/js/build/landings.js HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: application/javascript
last-modified: Tue, 06 Jun 2023 10:59:45 GMT
x-rgw-object-type: Normal
etag: W/"dd00e57bfaa2e6ed379c77d173897eb5"
x-amz-request-id: tx00000000000003c155251-0064838619-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:05:45 GMT
x-cdn-node: matrix2.i
x-req-id: 714066844913e5db1eb0fa0be9179eb5
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/bundle.js
200 OK 265 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/bundle.js
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
Size 265 kB (264765 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/bundle.js HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: application/javascript
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: W/"3ccc28ef769626a3ca907fc40cbe875a"
x-amz-request-id: tx0000000000000326d6476-00648389e4-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:21:56 GMT
x-cdn-node: matrix2.i
x-req-id: 9805fa670468a233f4471f0e93c0c7c0
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
bar.love.mail.ru/jsonp/bar?&_=1686840601330
200 OK 2 B URL GET HTTP/1.1 bar.love.mail.ru/jsonp/bar?&_=1686840601330
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.love.mail.ru
Fingerprint01:12:F8:7A:EE:A5:8E:12:A5:BB:D5:6A:65:D6:CC:2F:00:04:6E:32
ValidityThu, 15 Dec 2022 09:53:16 GMT - Tue, 16 Jan 2024 09:53:15 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /jsonp/bar?&_=1686840601330 HTTP/1.1
Host: bar.love.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloud.mail.ru/
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Length: 2
Connection: keep-alive
Timing-Allow-Origin: https://cloud.mail.ru
Access-Control-Allow-Origin: https://cloud.mail.ru
Access-Control-Allow-Credentials: true
Content-Type: application/javascript; charset=UTF-8
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/done.svg
200 OK 274 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/done.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 98d10f434a90677160c1a3ea153aa93e
83420d0fe20909733d7752498c8fee05ea97e4bc
b6ae684b570f96bb056ff83d529f374cec6a555b48a7f793f805a707f3010a17
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/done.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"31e9b2bbd93381be7094f684c4e73b2d"
x-amz-request-id: tx0000000000000325c225a-00648385af-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:03:59 GMT
x-cdn-node: matrix2.i
x-req-id: 20584c1fe158743bef3530dc1c1ea2ee
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-cross.svg
200 OK 331 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-cross.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (347), with no line terminators
Hash 0f1cd142441215b6f957d222e191c463
41f74adae7323efdd733a9fefb6f9d9a567bb194
229b23b3f43247e61d4d2b2f8091eefaff2aca13ea3147c297d92297dc8bcf83
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-cross.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"62d00f61e6ea627bbaba35b0233f2e01"
x-amz-request-id: tx00000000000003c17d451-006483868a-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:07:38 GMT
x-cdn-node: matrix2.i
x-req-id: ed41a45b57ebd85af1231e43ca031cd2
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/apple-touch-icon.png
404 Not Found 216 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/apple-touch-icon.png
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type XML document, ASCII text, with no line terminators
Hash 9ce0913072ea37e65f7ed716c118a930
23200507194a27125c52a92b5499fd84e313c3e3
d416e48b552f88e8e438004c5494ebe40a8a7c47524e2712bdd126af5e5c4892
GET /cloud.landings/159524/static/72074e4/apple-touch-icon.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 09 Jun 2023 20:33:11 GMT
content-type: application/xml
x-amz-request-id: tx00000000000003c37cd98-0064838c1a-294b2ac-default
x-cdn-node: matrix6.i.smailru.net
x-req-id: 920e9ef65f912d998bf456242a2dfaa6
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-headers: X-Requested-With,X-Request-Id,DNT,Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: Content-Length,Content-Type,Expires,Last-Modified,X-Host,X-CDN-Node,X-Req-Id
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo3.svg
200 OK 1.1 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo3.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1126), with no line terminators
Hash 8feb1407e7063ae59054a723d1e65903
7c6109fa4f1d6af3a63bb9825e48bf06d6d06d16
85bd718be7d2e2e094609413c86931f3c5f9b78fe56cdfbdd3cc0cb01ab54d44
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/ceo/ceo3.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"e4b7af63ced92bd822a01c436aca1930"
x-amz-request-id: tx0000000000000326a1caa-0064838907-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 9af58b711b5589eb08518dd09801911a
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
img.imgsmail.ru/hb/e.mail.ru/auth.gate/2.10.0/authGate.js?onload=__AG_onload
200 OK 54 kB URL GET HTTP/2 img.imgsmail.ru/hb/e.mail.ru/auth.gate/2.10.0/authGate.js?onload=__AG_onload
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.imgsmail.ru
FingerprintD0:BD:83:05:95:38:BD:59:C6:34:E4:E5:48:AC:CB:EB:6D:7E:E3:35
ValidityTue, 14 Feb 2023 12:27:51 GMT - Sun, 17 Mar 2024 12:27:50 GMT
File type ASCII text, with very long lines (53822), with no line terminators
Hash 7aa7cc517e84959e99094890a7df11ea
8fcc2e11b6995795b0c22b33604b1bbd9deb9708
b846e0100ed5d8f602da8487206b2e8b5710fdc4ba4d090e078b695dc8122436
GET /hb/e.mail.ru/auth.gate/2.10.0/authGate.js?onload=__AG_onload HTTP/1.1
Host: img.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: application/javascript
x-req-id: 5Dhjq3iSgk
last-modified: Fri, 31 Mar 2023 14:20:16 GMT
etag: W/"7aa7cc517e84959e99094890a7df11ea"
x-host: hb-bl3
content-encoding: gzip
timing-allow-origin: *
x-content-type-options: nosniff
vary: Origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
X-Firefox-Spdy: h2
cloud.mail.ru/js/build/landings-loader.js?async=true
200 OK 1.4 kB URL GET HTTP/1.1 cloud.mail.ru/js/build/landings-loader.js?async=true
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.cloud.mail.ru
FingerprintA0:11:5B:DE:A8:08:10:77:6E:84:C0:67:94:12:BB:AE:A5:37:0D:C4
ValidityThu, 16 Feb 2023 10:14:20 GMT - Tue, 19 Mar 2024 10:14:19 GMT
File type HTML document, ASCII text, with very long lines (1400), with no line terminators
Hash b01c5b173c59857af84f0fbb1f49635a
d88d6382ed9bd31176f29f2e344add9fc3b153dd
dbf42d2448d746fb0c34d042d4f74d286ad266ca1a132c36cf4a96828c2c48e0
GET /js/build/landings-loader.js?async=true HTTP/1.1
Host: cloud.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 Jun 2023 10:58:12 GMT
ETag: W/"647f1144-549"
X-Host: cld-front1.q
X-UA-Compatible: IE=Edge
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' blob: data: https://static.mail.corpcloud.mail.ru https://auth.mail.ru https://portal.mail.ru https://bar.love.mail.ru https://xray.mail.ru https://ad.mail.ru https://mc.yandex.ru https://an.yandex.ru https://yandex.ru https://firebase.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://vk.com https://ok.ru https://corsapi.imgsmail.ru https://top-fwz1.mail.ru https://r3.mail.ru https://cloud.mail.ru https://uploader.cloud.mail.ru https://zipview.mail.ru; script-src 'self' 'report-sample' 'nonce-je5Qn4Zo91' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://limg.imgsmail.ru; img-src blob: data: https://static.mail.corpcloud.mail.ru https://rs.mail.ru https://filin.mail.ru https://an.mail.ru https://b2.mail.ru https://ad.mail.ru https://top-fwz1.mail.ru https://trk.mail.ru https://xray.mail.ru https://stat.radar.imgsmail.ru https://img1.imgsmail.ru https://www.tns-counter.ru https://www.google-analytics.com https://counter.yadro.ru https://r.mradx.net https://d.mradx.net https://an.yandex.ru https://bs.yandex.ru https://mc.yandex.ru https://avatars.mds.yandex.net https://ad.adriver.ru https://vk.com https://*.userapi.com https://wcm-ru.frontend.weborama.fr https://cloud.imgsmail.ru https://thumb.cloud.mail.ru https://cloud.mail.ru https://r3.mail.ru https://docs.mail.ru https://apf.mail.ru https://zipview.mail.ru https://mail.radar.imgsmail.ru https://favicon.yandex.net; style-src 'self' 'report-sample' 'unsafe-inline' https://static.mail.corpcloud.mail.ru https://limg.imgsmail.ru https://r.mradx.net https://fonts.googleapis.com https://cloud.imgsmail.ru https://cloud.mail.ru; font-src 'self' data: https://static.mail.corpcloud.mail.ru https://fonts.googleapis.com https://fonts.gstatic.com https://yastatic.net https://cloud.imgsmail.ru https://top-fwz1.mail.ru https://cloud.mail.ru; media-src 'self' https://cloud-common-static.hb.bizmrg.com https://r.mradx.net https://top-fwz1.mail.ru https://cloud.mail.ru; object-src blob: 'self'; worker-src 'self'; manifest-src 'self' https://static.mail.corpcloud.mail.ru; frame-src 'self' https://o2.mail.ru https://www.google.com https://top-fwz1.mail.ru https://cloud.mail.ru https://amr.mrgcdn.ru https://zipview.mail.ru; frame-ancestors 'self'; child-src 'self'; upgrade-insecure-requests ; report-uri https://cspreport.mail.ru/cloud/;
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Pragma: no-cache
Expires: Thu, 09 Jun 2022 20:33:10 GMT
Cache-Control: no-cache, no-store, no-cache, must-revalidate
Content-Encoding: gzip
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply-black.svg
200 OK 278 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply-black.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash f940811509a5f218e61e16f79a1cbe81
5cd769211800af36e20819c7c713545057115710
fb775218bd701625cd492ac4e06bcf42bc4a9814780ecbedc30209513d72663c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply-black.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"e608c483584e3a795c57d4356b31b433"
x-amz-request-id: tx00000000000000bb79678-006479a2fe-2948b12-default
x-gg-cache-date: Fri, 02 Jun 2023 08:06:22 GMT
x-cdn-node: matrix2.i
x-req-id: 58f77969f7ed60ff858b686301788364
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/GooglePlay.svg
200 OK 15 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/GooglePlay.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (14649), with no line terminators
Hash c8a011b8d7d86be174baba64cd00937a
7a3af0f05c623d4ced4bd173e5918ec25074988f
7fef401ec00fa6d8578a9da365d1f0374c0e8b4e0ec58ad0383449b4f508737e
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/GooglePlay.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:49 GMT
x-rgw-object-type: Normal
etag: W/"c8a011b8d7d86be174baba64cd00937a"
x-amz-request-id: tx0000000000000326a1cc2-0064838907-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 6b29eb0de15497488192ac297dcad3b6
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
consentmanager.mgr.consensu.org/delivery/cmp.php?id=5232&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&o=1686342789313
200 OK 1.2 kB URL GET HTTP/1.1 consentmanager.mgr.consensu.org/delivery/cmp.php?id=5232&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&o=1686342789313
IP
ASN #61157 PlusServer GmbH
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerLet's Encrypt
Subjectconsentmanager.mgr.consensu.org
Fingerprint34:EC:49:27:07:FF:6C:D6:17:54:80:11:7C:C6:62:20:2A:F4:8F:09
ValidityWed, 26 Apr 2023 23:35:15 GMT - Tue, 25 Jul 2023 23:35:14 GMT
File type ASCII text, with very long lines (1256), with no line terminators
Hash 9c5be1ae0e236e5e4de57188178c3d07
1191a9b550ae7f58fd37ce9d240fac516f4dc7ec
10b2367474d575e6faa2bb868a0f54fb41195eab1e153e983efe63c0b35ebbbf
GET /delivery/cmp.php?id=5232&h=https%3A%2F%2Fcloud.mail.ru%2Fpromo%2Fsummer%2F%3Futm_source%3DTwitch%26utm_medium%3Dcpm%26utm_content%3Dpictureinpicture%26utm_campaign%3Dmedia-cloud05062023%26utm_term%3D%26erid%3D%26mt_sub3%3Dcpm%26mt_sub4%3Ddesktop%26mt_click_id%3Dmt-zewp68-1686342788-4021853142%26mt_network%3DTwitch%26mt_adset%3Dpictureinpicture%26mt_creative%3Dvideo%26mt_sub2%3Dmedia-cloud05062023&&l=en&o=1686342789313 HTTP/1.1
Host: consentmanager.mgr.consensu.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Pragma: no-cache
Access-Control-Allow-Origin: *
X-XSS-Protection: 0
Set-Cookie: __cmpcc=1; Expires=Mon, 08-Jul-2024 20:33:10 GMT; Path=/; SameSite=None; Secure
Last-Modified: Fri, 09 Jun 2023 20:33:10 GMT
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-info.svg
200 OK 349 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-info.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (369), with no line terminators
Hash 3a300b629040d2a8d7cc8f41240aa918
0d8dea3717c16dd8df9e5c03af963c0cdf273226
ce9df3deb8692eea8c6323708af1f38041289bf341fb5a61f4fa05392c4af81e
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-info.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"c43181ae6f5fcd27c5d66f50b3686b8c"
x-amz-request-id: tx00000000000003b6d0dfe-0064838907-2948b12-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: 2e6bc72424124dbee05d3b59dba87707
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloud-logo.svg
200 OK 2.6 kB URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloud-logo.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2650), with no line terminators
Hash 8ae3c3870d4bdf9b698a9fcea56c2619
202a0f8509a7a44443e68ede04d637574d1bfbb4
94ab0655747ad348c20e62cb6f26b0d51cb4c05aee1921e6abee93001af90ec2
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloud-logo.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:50 GMT
x-rgw-object-type: Normal
etag: W/"63414a797d9ecca837dccc40b24a979a"
x-amz-request-id: tx00000000000003c262005-0064838907-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:18:15 GMT
x-cdn-node: matrix2.i
x-req-id: e806e63188274d781965e861501f7eea
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo1.svg
200 OK 993 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo1.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1041), with no line terminators
Hash 470d322e4c5ba35781756968b3a85d97
ac212ff6d528b29a41add9e60846de8ef232e0a9
9e3dfccbca42ae5cfd65fb037b18dc564272e9e8d4fb3bc07517b2b961bd131f
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/social/logo1.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"a274d0d96283cd250f580d555c33d4a2"
x-amz-request-id: tx000000000000032744cb9-0064838bb3-2aa4313-default
x-gg-cache-date: Fri, 09 Jun 2023 20:29:39 GMT
x-cdn-node: matrix2.i
x-req-id: db17324dc0f476f21f333455b0fff537
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply.svg
200 OK 278 B URL GET HTTP/2 cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply.svg
IP
Requested by https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 473f40b4cfd43efcb1f7f7cfc24faa52
07c45e80a9c59b5352d0b56167587e95f7efd639
d4c6027474f449be9165cbbf6e64055194108eb062e261928f59adb3a24fbdf7
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/icon-apply.svg HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:10 GMT
content-type: image/svg+xml
last-modified: Tue, 30 May 2023 12:06:51 GMT
x-rgw-object-type: Normal
etag: W/"98c441eaefc05ee30aeac25aab18f875"
x-amz-request-id: tx00000000000003c35a4c1-0064838bb4-294b2ac-default
x-gg-cache-date: Fri, 09 Jun 2023 20:29:40 GMT
x-cdn-node: matrix2.i
x-req-id: 630f17dc75de3e3f28496451b22bbe02
content-encoding: gzip
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
X-Firefox-Spdy: h2
54.230.111.71
104.16.123.175
95.163.41.56
87.230.98.74
185.76.9.15
0.0.0.0