| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip | 51.75.52.14 | 301 Moved Permanently | 185 B |
URL HTTP/1.1s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip IP51.75.52.14:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4c555068310076e85908835c721911f5 9ec990aabb4391e139034f68e5e657e0f1d0b74d 568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Thu, 06 Oct 2022 07:21:13 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasheabb7d9ffae717f7305d63c057755470 3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Thu, 06 Oct 2022 09:26:06 GMT
Date: Thu, 06 Oct 2022 07:21:13 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 54.230.111.7 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP54.230.111.7:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pgbE4Q0JVvthKlth8QtjGIHVGSnAWr5VJQ92eDAWOpNcmMAbzaXFkg==
Age: 56035
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha1073a68ed38c8e3575e889224db944c ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7439
Expires: Thu, 06 Oct 2022 09:25:12 GMT
Date: Thu, 06 Oct 2022 07:21:13 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WKMMCG8nEadsUe5rOieF2U+Gt9pv9WRqucx4chC5X5QM2iS1YO/BZs/pDpQV6oL33Ij94lXUyjo=
x-amz-request-id: AD714CMZGR30EXW1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 06:58:39 GMT
age: 1354
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash33daaeecf29b4420b137b9983c0a8c58 b724d33ba0f6dcbfe03604f9ac3fe3cf2c6b72f6 f9776c71a957b194e2256ef58bb77def1fc72c66f7660c44a2fe4c705612972d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9776C71A957B194E2256EF58BB77DEF1FC72C66F7660C44A2FE4C705612972D"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14782
Expires: Thu, 06 Oct 2022 11:27:35 GMT
Date: Thu, 06 Oct 2022 07:21:13 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 07:21:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 54.230.111.7 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP54.230.111.7:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 06:29:41 GMT
Expires: Thu, 06 Oct 2022 06:58:24 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xZPs3Z89sFFc_Mq4UqLd67AGNa54_FoN3XPlLcVv6YDX820q5PqrBg==
Age: 3092
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash1561c6be7c89d1357a80d12de47b6e74 9a705277922ecca583c867af58b3efce099f83bd e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5580
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:14 GMT
Last-Modified: Thu, 06 Oct 2022 05:48:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 54.191.210.155 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.191.210.155:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wYdX2Ya+FeNYbGjeXWDYiA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iQdQwJKLtAHQwUeOmqmOPuod0JY=
|
|
| mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg | 54.36.106.111 | 200 OK | 3.3 kB |
URL HTTP/2mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg IP54.36.106.111:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3315), with no line terminators Hashc141857003053201a2b0239f9c2571a4 ed829bb667018790d2256bdb84cbc40e910b890d f4a8a85124370b95447eb9818a3feb3c646f126cf7abd4f80c80605e38b80a10
GET /build/public/images/c141857003053201a2b0239f9c2571a4.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/svg+xml
content-length: 3315
last-modified: Wed, 04 May 2022 16:07:08 GMT
etag: "6272a4ac-cf3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Discord.gif | 54.36.106.111 | 200 OK | 946 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Discord.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash863bd8be9dbe3fc6ea1c2ebe5e17b0f2 0b8090fa9037490c85fa5bc389e9f89a83540862 0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 946
last-modified: Tue, 30 Aug 2022 10:47:27 GMT
etag: "630deabf-3b2"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/uTorrent.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/uTorrent.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd8b3a7cb134c0c01d8b730eb52efa445 e5f8e04f40a7149aa1be7256634f86cf370ab7af 8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1477
last-modified: Mon, 19 Sep 2022 16:18:59 GMT
etag: "63289673-5c5"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/BlueStacks.gif | 54.36.106.111 | 200 OK | 1.4 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/BlueStacks.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashde4422d577c482189dfe5966c7362737 473e997d0ded39d3ccb1c54f874576c71cc1405f ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1438
last-modified: Tue, 04 Oct 2022 13:08:00 GMT
etag: "633c3030-59e"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zoom.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zoom.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf016ef461c4b5d433f2b75874a3fa9f0 84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1713
last-modified: Mon, 26 Sep 2022 21:18:42 GMT
etag: "63321732-6b1"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/MediaGet.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/MediaGet.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashb69d7ccb1c036103aaf41086187b37fa 3cec81950db96a58ac7da7a216777c18f960ce0a 2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1589
last-modified: Mon, 13 Jun 2022 09:32:04 GMT
etag: "62a70414-635"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zona.gif | 54.36.106.111 | 200 OK | 485 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zona.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashaf31d9cab2614849c9f71f67744d5fe3 51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec 885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/WinRAR.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/WinRAR.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hashde072b93dbf65068ccfc9a91e722ae90 51e63f9279c737c782e9fce4d1991a2286eb1b65 5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1484
last-modified: Sat, 14 May 2022 06:43:23 GMT
etag: "627f4f8b-5cc"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/CCleaner.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/CCleaner.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash28ecdadc6ce55c1c52937fe69634148f 53a1e07d37c4f4e940dcf928f071e1e9698cef5c 56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1626
last-modified: Tue, 20 Sep 2022 12:59:01 GMT
etag: "6329b915-65a"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Steam.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Steam.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash86c651e4629614e6c3d484025d31ec96 83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033 e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1464
last-modified: Fri, 30 Sep 2022 01:28:11 GMT
etag: "6336462b-5b8"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Rufus.gif | 54.36.106.111 | 200 OK | 860 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Rufus.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash8c927578b093422fe11e609f10c18aca 1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a 13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 860
last-modified: Thu, 04 Aug 2022 08:36:46 GMT
etag: "62eb851e-35c"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf31881c998b0af01243f70cb5a1aedfc 56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7 ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1689
last-modified: Thu, 14 Jul 2022 18:06:37 GMT
etag: "62d05b2d-699"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/7-Zip.gif | 54.36.106.111 | 200 OK | 401 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/7-Zip.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash769824aa176b2636b1640c3d60afb524 655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9 f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 401
last-modified: Sat, 16 Jul 2022 17:26:25 GMT
etag: "62d2f4c1-191"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif | 54.36.106.111 | 200 OK | 929 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash9833effb5dd42a027e756f796ddf4cfe 9e99332744c5484e396a029a9d34bf957dff3f73 2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 929
last-modified: Wed, 28 Sep 2022 03:58:35 GMT
etag: "6333c66b-3a1"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif | 54.36.106.111 | 200 OK | 964 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash11c35a7e206514cf071c7ad75efee9a6 946062bc95112ae2b7e73a5e33d0a2884d983e34 bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 964
last-modified: Wed, 24 Aug 2022 14:25:20 GMT
etag: "630634d0-3c4"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash84cfb69793f19552fdda4e7ff93ff571 b74176c770ae2a5e7591cf0c220c2031394e343a c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1014
last-modified: Wed, 24 Aug 2022 16:09:40 GMT
etag: "63064d44-3f6"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash475687f8d9f500bd84aff0051af75dc0 747eb724c7cd54c9cc583ec2eb034a04accb7cef 4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1023
last-modified: Sun, 02 Oct 2022 15:42:15 GMT
etag: "6339b157-3ff"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Portable-Firefox.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Portable-Firefox.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd70247f061216fa40968c8526330fc3c 917a8f1c9f15075b8532f4cd271f2cd5936ef289 c6e8491e80db111983e6b03ea78f786ad6cdbea8f955e9a623586ddbfbc0bcb3
GET /images/ru/win/icons/Portable-Firefox.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1586
last-modified: Thu, 06 Oct 2022 00:59:10 GMT
etag: "633e285e-632"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash30a28bdde18ab77d2a85aa6108c42433 f7c1709b7c7614b7d12acd145b751ad051a0eaa8 60b6aa6f1c0b23afb505f652d2985ddbc5418c1a289c5f359f91c34c44688810
GET /images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1493
last-modified: Thu, 06 Oct 2022 00:58:25 GMT
etag: "633e2831-5d5"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Radiotracker.gif | 54.36.106.111 | 200 OK | 1.2 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Radiotracker.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashffe3b18785294c276e69698b7c9a1b6b 4ca19dd6d831b4602cff051af2b82b0cfcf252a5 37f304e0f59a2c2a4d6c7db0a81237c1df25d8ccebcc76c642ba6b7e299ad5e0
GET /images/ru/win/icons/Radiotracker.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1156
last-modified: Thu, 06 Oct 2022 00:57:33 GMT
etag: "633e27fd-484"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/audials-tunebite.gif | 54.36.106.111 | 200 OK | 891 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/audials-tunebite.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashefafef82a53941a2749151ce2df71b64 72075b812089de64cc4ec0e4a7cd47a50d23a2c9 13e68a4c59a30bc1e154e3c59a76bb52e522616f0918c4c258a16ea2ea1e1d19
GET /images/ru/win/icons/audials-tunebite.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 891
last-modified: Thu, 06 Oct 2022 00:56:53 GMT
etag: "633e27d5-37b"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Audials-One.gif | 54.36.106.111 | 200 OK | 1.1 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Audials-One.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash1310fa702e8560e6e035491f5b8448e5 994f28edd1d2ba8550a1d8996ab616ec4309d1f5 922816e86e6f4b7ea4f6f5cc68627a1bd1b0fc71141b27468b23d0f96de92da2
GET /images/ru/win/icons/Audials-One.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1062
last-modified: Thu, 06 Oct 2022 00:56:25 GMT
etag: "633e27b9-426"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Unity-3D.gif | 54.36.106.111 | 200 OK | 767 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Unity-3D.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 31 x 32\012- data Hash8005700872f1ea9379cb8c0f1fb0ef05 cdb620e1306ff07b577cded3dd47128bff63dd93 201d6623ad911c05d3ac251892ee58c551db40291484723e216d52f3f16d02e8
GET /images/ru/win/icons/Unity-3D.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 767
last-modified: Thu, 06 Oct 2022 00:52:29 GMT
etag: "633e26cd-2ff"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Skype.gif | 54.36.106.111 | 200 OK | 873 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Skype.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash4f7c45b58c289e549e85f7ba7555bd0a f8c1a4d988fd114ee14ad232c83e8713c69766e8 7f6b6b9caf15736a2dd6e9129bcfba0d9d7cb7c89c586f8cf306aa0b878f6da1
GET /images/ru/win/icons/Skype.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 873
last-modified: Thu, 06 Oct 2022 00:49:25 GMT
etag: "633e2615-369"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Audacity-Portable.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Audacity-Portable.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash66d46942847c6e9749d8df706694ecc0 14e9f89b020fb8a8a3da2b553e358ecefd61c30a ac536a9c8a1f7f205c00efacf7135f9f627272aed4841a67202a89a2e8213713
GET /images/ru/win/icons/Audacity-Portable.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1478
last-modified: Thu, 06 Oct 2022 00:48:01 GMT
etag: "633e25c1-5c6"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Audacity.gif | 54.36.106.111 | 200 OK | 1.1 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Audacity.gif IP54.36.106.111:0
File typeGIF image data, version 89a, 32 x 32\012- data Hashd1b400a0ebc2fae3c077ae08e994a631 7060a6bbe7a5ddc549bef8b8fa9e413371ec12af 662d615bb151592675de4fb633caf8dda98ddca36c0e167d97b3962ebcc4f094
GET /images/ru/win/icons/Audacity.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1060
last-modified: Thu, 06 Oct 2022 00:43:44 GMT
etag: "633e24c0-424"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/IntelliJ-IDEA.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/IntelliJ-IDEA.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 31 x 32\012- data Hash2ce8e811b6c82992dc3193b1db4f9279 477545f11e8d3ee079cde79b265c077f8eac9cf0 496bf6d46573a075062352714ca9cbcf0a794c3ab7528541bc516d332b39fe4c
GET /images/ru/win/icons/IntelliJ-IDEA.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1579
last-modified: Thu, 06 Oct 2022 00:41:13 GMT
etag: "633e2429-62b"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/TrueConf.gif | 54.36.106.111 | 200 OK | 1.9 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/TrueConf.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash7c110c7a2d158c4c5a8bfc31ac180fc3 eb2ecb1b0c13657ef04c6d3e1528f23efaf460c1 a8ee766f9c23367e317e604ac1345704c376acafa841fced6d700e29779c5591
GET /images/ru/win/icons/TrueConf.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1865
last-modified: Thu, 06 Oct 2022 00:37:45 GMT
etag: "633e2359-749"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/GameSave-Manager.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/GameSave-Manager.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash9c9e4856ae6502e0f0b9654b4824d5f2 2992562e5162b4c33efd09319f0fc441ca33f259 2decf79a707d95b07f5b9ee885798bdc98219e89bc148ad5a4b708875b548e6c
GET /images/ru/win/icons/GameSave-Manager.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1542
last-modified: Wed, 05 Oct 2022 17:58:02 GMT
etag: "633dc5aa-606"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif | 54.36.106.111 | 200 OK | 848 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf9f9b152e278ee39af072c7c2e859c3d 5dd5b28438b2fc167d2b6bf4b1ec793b4acdf187 c5d4f6140c445842db62d99db31866ac02b944e818f238573068acd765bc9188
GET /images/ru/win/icons/PRO32-Total-Security.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 848
last-modified: Wed, 14 Sep 2022 17:33:56 GMT
etag: "63221084-350"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 30\012- data Hasha63dd04869627f71db400d73a27b5ca0 dac47496dcf93653fdd2ae8d79ca63d084f6ae66 bb2072bf390060645aeabe023cf3b3dc5c30a85d4be46accaa4874a4186cfd41
GET /images/ru/win/icons/Microsoft-Excel.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1619
last-modified: Thu, 05 May 2022 21:51:54 GMT
etag: "627446fa-653"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash6c8bbb19f01d93c146b12b544eb16262 2819fd34886e161fde3f7b3015c08304cf213798 b5c6cf5d91ab028b95a9007a84317bfbf9699806351edf3ccbdc92ccb0a58bc5
GET /images/ru/win/icons/Microsoft-Word.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1640
last-modified: Thu, 05 May 2022 20:00:12 GMT
etag: "62742ccc-668"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash940d8a94d991a9e988a36281e5952035 419b12a90557636f6e9f2114fc86a0368d5a55e4 8b040e4d326df30674cc378b526329bd2a12f1da1fc50e8c962a2a7929bceceb
GET /images/ru/win/icons/AdGuard-VPN.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1484
last-modified: Fri, 16 Sep 2022 11:13:15 GMT
etag: "63245a4b-5cc"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/R7-Office.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/R7-Office.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash1499cbae0c5daf1847cb5c434bfa7566 132fbdcac2baf80287d427fe49ece5dd4720baab 32c75cce2d6ec258c4c1448621cb4b6f1eaa0b771bfca72075069af4cae2de01
GET /images/ru/win/icons/R7-Office.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1694
last-modified: Thu, 17 Mar 2022 13:37:40 GMT
etag: "623339a4-69e"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/MyOffice.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/MyOffice.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash3d2b9a92a2e317fe7a7686045416148a 9425c7683f8a355faca109b40b17190a9c86c294 118eb30dc6afaff9364a4ff71a3a5bd598d390b8d469fc43c304cac39a18560f
GET /images/ru/win/icons/MyOffice.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1490
last-modified: Tue, 15 Mar 2022 11:26:53 GMT
etag: "623077fd-5d2"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf9bf9be5e6b7befa2aa9a9ccf47e87d9 62ca7e70e430a625a9526541df18db4219dd8ea5 04eae19badca734312ed80cb0fcc2faf01baff045d6a6a5e6905daf13e9f00f6
GET /images/ru/win/icons/Telamon-Cleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1626
last-modified: Sun, 06 Mar 2022 02:40:04 GMT
etag: "62241f04-65a"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash88fe56a42c5999a0142b18179303f9a7 de0d7811d886843fc98d2c97047d725e972947ee 4ea7b4443569a3ceab9d4e4b359f4a01d924846e00e617bd0045f3cbc65afc04
GET /images/ru/win/icons/Armoury-Crate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1766
last-modified: Wed, 19 Jan 2022 00:31:37 GMT
etag: "61e75be9-6e6"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashe8cf700f2ff4a4b559134d26b3fa849c 70dc81bfb5652933be51348263ea0ff258fd3998 e1d4a698910912f734df70d9aa9fe5e210c0a8cd6b62f5e740de8a20ff97ccdf
GET /images/ru/win/icons/HyperX-NGENUITY.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1768
last-modified: Tue, 23 Aug 2022 08:39:22 GMT
etag: "6304923a-6e8"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashb50affa05a63f1ea8339f1f69533ad72 d80325990b6742c14f67044dacb3f581a67f9e3b c197af37f8be5741c380b74550ad3635a655772a6e369f2791cec30d8270db99
GET /images/ru/win/icons/NVIDIA-GeForce-Now.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1812
last-modified: Mon, 03 Oct 2022 15:18:42 GMT
etag: "633afd52-714"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash8c836563ea095a56c60cc1db682ba1a6 9a10d5fc1962be84941e283e178a41251c31a491 9581d845d05fa8ec32b01da9732f7ee7da556fbe271677d3e9c2947b6e74172b
GET /images/ru/win/icons/Microsoft-Office-2021.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1539
last-modified: Sun, 26 Dec 2021 15:18:26 GMT
etag: "61c887c2-603"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Figma.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Figma.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashbc0180a815e6d63d70b2262def7bb0f0 399eab7ec86e08b41691e57bc21e1049b76db3a6 ecd0a19ce6d26ba03550870b6f42f40e4d289c6d5e842ed4ac0819e0ad2de0e4
GET /images/ru/win/icons/Figma.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/gif
content-length: 1809
last-modified: Tue, 05 Apr 2022 21:47:49 GMT
etag: "624cb905-711"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28445_small.jpg | 54.36.106.111 | 200 OK | 9.1 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28445_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashd21f28ce9ef212bb54e71ea9c6411380 0257911ac06d90b7097c84a001ca95f742578541 8f44934fd098b0cad038302d50d97ace212a7491eab25bb659ed50a421c099af
GET /images/arts/ru/screens/28445_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 9145
last-modified: Sun, 02 Oct 2022 19:49:12 GMT
etag: "6339eb38-23b9"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28443_small.jpg | 54.36.106.111 | 200 OK | 11 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28443_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hashf4ec2e491cb08ddfd682c6cd84016776 770bf22857645bdd9b2f2a1734918e61b631ca88 32e8fd76c4526bf9dd630f9583a639d5811fa58c766c04da2695a9094def1324
GET /images/arts/ru/screens/28443_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 11279
last-modified: Sun, 18 Sep 2022 15:01:21 GMT
etag: "632732c1-2c0f"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28442_small.jpg | 54.36.106.111 | 200 OK | 17 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28442_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash15828d360118366377b1419104814af3 8390a95680252e9d4672ec9bd26a9c7ca202d573 b7c45767f2d7c5c9af1b2b0704b7315c4e62dd0fcf6d22b7590730b084e0e03f
GET /images/arts/ru/screens/28442_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 17075
last-modified: Wed, 07 Sep 2022 00:36:28 GMT
etag: "6317e78c-42b3"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28441_small.jpg | 54.36.106.111 | 200 OK | 158 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28441_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Macintosh), datetime=2022:07:28 14:01:21], baseline, precision 8, 190x190, components 3\012- data Size158 kB (158511 bytes) Hash5a4c909ce1a53b3780a8ae729ba2c585 326540caaedad3bd2c782e849b3db910af033783 2c8cfe2cb61febb869cdd0b2afbe6a2df57b3783629dbc18fc61e2de76de9e10
GET /images/arts/ru/screens/28441_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 158511
last-modified: Wed, 31 Aug 2022 14:02:00 GMT
etag: "630f69d8-26b2f"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28440_small.jpg | 54.36.106.111 | 200 OK | 20 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28440_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash34e6b9f5686d42f769d65da3c703afb3 be3eb1eb6a659519f7d97ded63d51853519454cd 499a3a807b45a524e1d1d9ace22de433c7b91ce04db2d24a411b0e45fc034245
GET /images/arts/ru/screens/28440_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 20282
last-modified: Sun, 14 Aug 2022 14:14:16 GMT
etag: "62f90338-4f3a"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28439_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28439_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 190x190, components 3\012- data Hash70a04d63129725567c2182f64f0d1af1 bd3ac462016f4eaa9d40a45842bca46b37bf1e9b f85c61c2615cfa6524e9956c840a2a424940fac22d252c711ee639b01c785535
GET /images/arts/ru/screens/28439_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 14905
last-modified: Sat, 30 Jul 2022 22:51:54 GMT
etag: "62e5b60a-3a39"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28438_small.jpg | 54.36.106.111 | 200 OK | 7.0 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28438_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash3009c49202998ab4cd1216520a8cc819 2fb13ed4c45430c3b4c9ccaeeb55da24c2caf748 5faeae1034449278fe2ef1e5965b3406d7225272a3d0b192ca04c47b0f0418d2
GET /images/arts/ru/screens/28438_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 6953
last-modified: Tue, 12 Jul 2022 21:13:06 GMT
etag: "62cde3e2-1b29"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js | 151.101.85.229 | 200 OK | 84 kB |
URL HTTP/2cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js IP151.101.85.229:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (593) Hash5df383641efa0a3ba4302c7fec8d6394 f0cec22d20f41110ab644ee246201cb8787379b0 10fb3cdc6d2cbc33aa86bd81a8325449c04d227555a8a9f504deb8cfb0f16e91
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.245.0
x-jsd-version-type: version
etag: W/"33a2f-8LAWo/m1uPKVR6/desBN4giRHHM"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 06 Oct 2022 07:21:14 GMT
age: 36612
x-served-by: cache-fra19157-FRA, cache-bma1647-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 83822
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28436_small.jpg | 54.36.106.111 | 200 OK | 11 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28436_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hashe9a1e586d89757c51c435f35fb623c99 191e70d270b703136a23a0b700332cf701038887 023b908efcb5a0d08961b40e16d0b8c06e0d3a69e08fe369d1b2f8f062da03d5
GET /images/arts/ru/screens/28436_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 11359
last-modified: Fri, 01 Jul 2022 02:45:56 GMT
etag: "62be5fe4-2c5f"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28435_small.jpg | 54.36.106.111 | 200 OK | 12 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28435_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash8cdac03ec87f15dd49806715294e3f73 ff0b7b256ef5fa2a5df52fad7bac3fbdeaa97e62 086eae1521a24aca3be7bb07a27d76520cc09081c8d8e3708cb34e382c5cb26e
GET /images/arts/ru/screens/28435_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 11529
last-modified: Wed, 01 Jun 2022 02:36:31 GMT
etag: "6296d0af-2d09"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28433_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28433_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash43707607b0b610e3b0e8978627b6745e 64c80a94ca4173efbce299440f3dd294f198dc9b 193f60af8fa128a5853a3aeb7f2391a44335f7dbdc06ec29a82c858e0569035e
GET /images/arts/ru/screens/28433_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 14838
last-modified: Fri, 27 May 2022 19:21:56 GMT
etag: "629124d4-39f6"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png IP54.36.106.111:0
File typePNG image data, 117 x 27, 8-bit/color RGBA, non-interlaced\012- data Hashc539cc4109c4ed80ec05cb5812112d1c e54ad527d32113957d3c6fbc42f5dee7cf2a15f5 3abcf0a2a296461fb1cf4584d08a2a9afdbd0c0861a7211ab6f53fc64f8fe83a
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/png
content-length: 1770
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72471_small.jpg | 54.36.106.111 | 200 OK | 13 kB |
URL HTTP/2games.mydiv.net/images/screens/72471_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashe03a38f4b7f52d7134eafe7dda13755f 0f789f1a474c49fa5a221d73f74e515f8e7218d3 feac5f8f765dec64703402e27becbfa88e1549c477b207074eba045a0d17e7d0
GET /images/screens/72471_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 13089
last-modified: Sun, 02 Oct 2022 20:56:45 GMT
etag: "6339fb0d-3321"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72461_small.jpg | 54.36.106.111 | 200 OK | 8.1 kB |
URL HTTP/2games.mydiv.net/images/screens/72461_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashebd753b3d4ce1a16fe861fab2ede51f4 69f60ca1a2a070541cb44b6bfac89961a6dd5a75 080242fe4bf45120f9ec74c7a1e2516a31069c918f6f926fbff2d69a1692e980
GET /images/screens/72461_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 8056
last-modified: Wed, 21 Sep 2022 02:10:51 GMT
etag: "632a72ab-1f78"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72456_small.jpg | 54.36.106.111 | 200 OK | 4.8 kB |
URL HTTP/2games.mydiv.net/images/screens/72456_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash1315c02c0e96c35ca2e051dc9d95664c bb864308628da9bc136d0dbaf3e9b121087ec2d9 9c4e096b7afe94c3dc4e31102e6a480cf42243260fcd2fc598762fc866d5618d
GET /images/screens/72456_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 4790
last-modified: Sun, 18 Sep 2022 15:26:53 GMT
etag: "632738bd-12b6"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72451_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2games.mydiv.net/images/screens/72451_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashe08b5350ba747049494dedeb4ab7c409 133fe8624e0fbea168dc2187cdb0f2bf879be302 56f98fc1eaca77842715b4ecdd5d9c459d4f2462ba7b264fcf5635cbe2089b69
GET /images/screens/72451_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 15208
last-modified: Wed, 07 Sep 2022 10:25:01 GMT
etag: "6318717d-3b68"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72446_small.jpg | 54.36.106.111 | 200 OK | 19 kB |
URL HTTP/2games.mydiv.net/images/screens/72446_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashbecf70ae12a63a8b4f7305914437817b 4d3bafa9331869fbfdcd18a14ce1add3846c51e2 9344865484ed02dc880b48b8c7bb4fed21f7ddfb567435a18d106ace42d2f3ac
GET /images/screens/72446_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 18858
last-modified: Wed, 31 Aug 2022 21:09:08 GMT
etag: "630fcdf4-49aa"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72441_small.jpg | 54.36.106.111 | 200 OK | 16 kB |
URL HTTP/2games.mydiv.net/images/screens/72441_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash981fb09b10326cf19860686cba20d62b 3272ac38c136d7fde4c092e290c0d57c9c98898f 6081e6cc87c64b11e834b68253ec47d8fc9f0244b400239c309f7b38128b70cd
GET /images/screens/72441_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 16506
last-modified: Wed, 31 Aug 2022 19:53:33 GMT
etag: "630fbc3d-407a"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/69355_small.jpg | 54.36.106.111 | 200 OK | 8.7 kB |
URL HTTP/2games.mydiv.net/images/screens/69355_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashda504253ef75615ad9551c23b3224ab3 bcf2ff423726b8fc20e47ba37e279d1caf394298 c9f6c74d478b6789721f4f48f6f5172f5c12bbf1c625f208ad0956e8261b4874
GET /images/screens/69355_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Wed, 29 Jan 2014 07:26:01 GMT
etag: "52e8ad09-21f7"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72436_small.jpg | 54.36.106.111 | 200 OK | 42 kB |
URL HTTP/2games.mydiv.net/images/screens/72436_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2018:05:24 13:23:29], baseline, precision 8, 190x190, components 3\012- data Hashda4f1a1a276a3cba9f2e4c6ced162bed 39747794e91bb5c28bc0c142b9a8b4a41b9c1145 5ff179cb0e8850322ed07d57557b90f06f89cc8bf5c136a39fd55dcd0ae77367
GET /images/screens/72436_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 41580
last-modified: Mon, 01 Aug 2022 22:55:02 GMT
etag: "62e859c6-a26c"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png | 54.36.106.111 | 200 OK | 4.9 kB |
URL HTTP/2mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png IP54.36.106.111:0
File typePNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data Hashe7812d5843d1bdde5f676ec192619596 33f68a6af0085917a61ec1a04ab007dbc0036afe ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/png
content-length: 4885
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.21.226:0
Hash6a200c099959fe77bd25a69a08491185 7c24d38d7487b25481feb4d0d2ada168be4bd01b 7f8dda00c4ce06b2fd97906886649c36de58e04ad3bdf66611c44663546d6531
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7D71FB6C76E6024A633B931D665DF46960FDFC46"
Expires: Thu, 06 Oct 2022 18:00:00 GMT
Last-Modified: Thu, 06 Oct 2022 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1188
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39c7a23b4f3-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashff5f22aafa6751c60631736c305a4c7c 278b89e5c1a978e070be4b66bb780862894b8504 b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashff5f22aafa6751c60631736c305a4c7c 278b89e5c1a978e070be4b66bb780862894b8504 b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 | 216.58.207.195 | 200 OK | 23 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data Hash70487f355d22aef7eee8f36bca4d03b8 9ffd6785eeaad33637a9c1be6a0c208f346e134e d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:39:48 GMT
expires: Wed, 04 Oct 2023 05:39:48 GMT
cache-control: public, max-age=31536000
age: 178886
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 | 216.58.207.195 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data Hashf9f3b19c02acf071e57b965bed8f3b02 3dbfd06b63517d349a70537269e6d4dbe6fcaec5 56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:49:50 GMT
expires: Wed, 04 Oct 2023 05:49:50 GMT
cache-control: public, max-age=31536000
age: 178284
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon-192x192.png | 54.36.106.111 | 200 OK | 19 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon-192x192.png IP54.36.106.111:0
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash70289d57de1e3d2dffeb3c3a85418a9c 673136d7d97ebfea4e16a65b2c356b2f4e4f6067 b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:15 GMT
content-type: image/png
content-length: 18575
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-488f"
expires: Sat, 05 Nov 2022 07:21:15 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon.min.svg | 54.36.106.111 | 200 OK | 4.5 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon.min.svg IP54.36.106.111:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators Hashde51b957170a46e23a1a3eaf49df0554 e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2 ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:15 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-116f"
expires: Sat, 05 Nov 2022 07:21:15 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashff5f22aafa6751c60631736c305a4c7c 278b89e5c1a978e070be4b66bb780862894b8504 b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasheac86f868b3967f1946c7f5fc712b25f e2ae8eb09715a0af0791c085eb35bf66e0548e30 bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashf763a685d14b05b6ced9792151da30b8 b25be5359245be857ffa1bddcb197cb771a36a45 505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasheac86f868b3967f1946c7f5fc712b25f e2ae8eb09715a0af0791c085eb35bf66e0548e30 bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| google-analytics.com/analytics.js | 216.58.211.4 | 200 OK | 20 kB |
URL HTTP/2google-analytics.com/analytics.js IP216.58.211.4:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 06 Oct 2022 07:20:51 GMT
expires: Thu, 06 Oct 2022 09:20:51 GMT
cache-control: public, max-age=7200
age: 24
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash238a4a712d46f3fd8de392a172d15723 006a80a7ca571639478a0afc2becfd702f6ba4b9 3ca201082e5194e842e2a588969cd0971cc5e622537343c0c0a924a354960bc3
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Mon, 10 Oct 2022 04:08:24 GMT
ETag: "006a80a7ca571639478a0afc2becfd702f6ba4b9"
Last-Modified: Thu, 06 Oct 2022 04:08:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1294
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39d3adab4f3-OSL
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.98 | 200 OK | 54 kB |
URL HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.98:0
File typeASCII text, with very long lines (2910) Hashcef65e396c21b8b4b925cfeb50a28010 f3340fe12a519a1ca80f4948194cb22d00800e3a 92feb1793a81b6d7818234927943d11312d0538a51b0d2402d2952b29758c39f
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Thu, 06 Oct 2022 07:21:15 GMT
expires: Thu, 06 Oct 2022 07:21:15 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6949009556830013187
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54541
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashf763a685d14b05b6ced9792151da30b8 b25be5359245be857ffa1bddcb197cb771a36a45 505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasheac86f868b3967f1946c7f5fc712b25f e2ae8eb09715a0af0791c085eb35bf66e0548e30 bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yandex.ru/ads/system/context.js | 5.255.255.60 | 200 OK | 108 kB |
URL HTTP/2yandex.ru/ads/system/context.js IP5.255.255.60:0
File typeASCII text, with very long lines (65536), with no line terminators Size108 kB (107899 bytes) Hash05f4e89a415b66d8ba0b7a3c0056e81b f56309fc11afdc796b59d85bd249fbd36175eb46 1453d5a84cc9585ba84cca56bff2fe3761b2f6f74492a5b9e64b3e25be0a80de
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=q+CIiPKF601QxViSPMgUM0UKHmz4gA0nbQF6quKcXJpvlj7P8BstkfYofmzDaSPywZgyujOobbAf1CqF/Q5AKyxBuyU=; Path=/; Domain=.yandex.ru; Expires=Sat, 05-Oct-2024 07:21:15 GMT; SameSite=None; Secure; HttpOnly
expires: Thu, 06 Oct 2022 08:21:15 GMT
x-yandex-req-id: 1665040875107882-1934223697608470462-vla1-4682-vla-l7-balancer-8080-BAL-8426
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 | 54.36.106.111 | 200 OK | 2.1 kB |
URL HTTP/2mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 IP54.36.106.111:0
Hash826681cf094fe12be6c8031a6bbde9db 328c74e90c5105e914bd78c53cdff5348b952e2d ed30d1a36c76abd6a9906fa18b71e36dd58e22e554c0f45aec1cb3c20df44fed
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019; _ym_uid=1665040875253585242; _ym_d=1665040875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-121a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash94b7b292d0a37f28b0b6d73ccf94df42 2c189086a6c996844304c7c52f9b1640df6dbfa5 0d77d1582b783a633ba749cde403840767a958ff6c042e108cbc4eaa59957b7e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 10 Oct 2022 04:43:57 GMT
ETag: "2c189086a6c996844304c7c52f9b1640df6dbfa5"
Last-Modified: Thu, 06 Oct 2022 04:43:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 43
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39f2d9db4f3-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash94b7b292d0a37f28b0b6d73ccf94df42 2c189086a6c996844304c7c52f9b1640df6dbfa5 0d77d1582b783a633ba749cde403840767a958ff6c042e108cbc4eaa59957b7e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 10 Oct 2022 04:43:57 GMT
ETag: "2c189086a6c996844304c7c52f9b1640df6dbfa5"
Last-Modified: Thu, 06 Oct 2022 04:43:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 43
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39f2a53b4fd-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash94b7b292d0a37f28b0b6d73ccf94df42 2c189086a6c996844304c7c52f9b1640df6dbfa5 0d77d1582b783a633ba749cde403840767a958ff6c042e108cbc4eaa59957b7e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 10 Oct 2022 04:43:57 GMT
ETag: "2c189086a6c996844304c7c52f9b1640df6dbfa5"
Last-Modified: Thu, 06 Oct 2022 04:43:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 43
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39f3da8b4f3-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash94b7b292d0a37f28b0b6d73ccf94df42 2c189086a6c996844304c7c52f9b1640df6dbfa5 0d77d1582b783a633ba749cde403840767a958ff6c042e108cbc4eaa59957b7e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 07:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 10 Oct 2022 04:43:57 GMT
ETag: "2c189086a6c996844304c7c52f9b1640df6dbfa5"
Last-Modified: Thu, 06 Oct 2022 04:43:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 43
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755ca39f3a5cb4fd-OSL
|
|
| games.mydiv.net/images/screens/72466_small.jpg | 54.36.106.111 | 200 OK | 8.9 kB |
URL HTTP/2games.mydiv.net/images/screens/72466_small.jpg IP54.36.106.111:0
Hashf80882bf67cf261aa08d636da095149a 3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd 4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /images/screens/72466_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: image/jpeg
content-length: 9539
last-modified: Sun, 02 Oct 2022 16:39:49 GMT
etag: "6339bed5-2543"
expires: Sat, 05 Nov 2022 07:21:14 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1618%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1213066060804%3Ahid%3A419578946%3Az%3A0%3Ai%3A20221006072115%3Aet%3A1665040875%3Ac%3A1%3Arn%3A895220137%3Arqn%3A1%3Au%3A1665040875253585242%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C88%2C760%2C1%2C471%2C0%2C%2C203%2C1%2C%2C%2C%2C1605%3Ans%3A1665040873234%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665040875%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) | 77.88.21.119 | 302 Found | 4.5 kB |
URL HTTP/2mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1618%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1213066060804%3Ahid%3A419578946%3Az%3A0%3Ai%3A20221006072115%3Aet%3A1665040875%3Ac%3A1%3Arn%3A895220137%3Arqn%3A1%3Au%3A1665040875253585242%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C88%2C760%2C1%2C471%2C0%2C%2C203%2C1%2C%2C%2C%2C1605%3Ans%3A1665040873234%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665040875%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) IP77.88.21.119:0
Hashfd34c992c28139906150fc9122f54a06 117ef2a27cfeb4ebde2cdae3bc6276e011403fbc a19688134593714d530421b74583d3efb234558bb0bd22a0e9db1bfc9d98ae3c
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1618%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1213066060804%3Ahid%3A419578946%3Az%3A0%3Ai%3A20221006072115%3Aet%3A1665040875%3Ac%3A1%3Arn%3A895220137%3Arqn%3A1%3Au%3A1665040875253585242%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C88%2C760%2C1%2C471%2C0%2C%2C203%2C1%2C%2C%2C%2C1605%3Ans%3A1665040873234%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665040875%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1618%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1213066060804%3Ahid%3A419578946%3Az%3A0%3Ai%3A20221006072115%3Aet%3A1665040875%3Ac%3A1%3Arn%3A895220137%3Arqn%3A1%3Au%3A1665040875253585242%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A29%2C88%2C760%2C1%2C471%2C0%2C%2C203%2C1%2C%2C%2C%2C1605%3Ans%3A1665040873234%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665040875%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 06 Oct 2022 07:21:15 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yandexuid=9484782471665040875; Expires=Fri, 06-Oct-2023 07:21:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9484782471665040875; Expires=Fri, 06-Oct-2023 07:21:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=494126441665040875; Path=/; SameSite=None; Secure
i=rpIMrifntCLtR+79vefvceHe03WsGo+GrtFGe1Hzb5PmX7zjOUX4SDQ87zJm6Ys8/Hq0wvLMYuJkb29ymbiXDMFlg0A=; Expires=Sun, 03-Oct-2032 07:21:14 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696576875.yrts.1665040875#1696576875.yrtsi.1665040875; Expires=Fri, 06-Oct-2023 07:21:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:15 GMT
last-modified: Thu, 06-Oct-2022 07:21:15 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/661443/6f527d43a9ef5a4469bb.js | 178.154.131.216 | 200 OK | 96 kB |
URL HTTP/2yastatic.net/partner-code-bundles/661443/6f527d43a9ef5a4469bb.js IP178.154.131.216:0
File typeASCII text, with very long lines (65497) Hashd39e3fdfe17cc05602009e261fb2947e 344ff7a5a4319ae8c0a4f6733ad64a042985e7f6 25a8fc41121b215bfaf3b66af48c33415921cc11bb27c6bcf2e105ee78b006c3
GET /partner-code-bundles/661443/6f527d43a9ef5a4469bb.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 06 Oct 2022 07:21:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 96168
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "d39e3fdfe17cc05602009e261fb2947e"
expires: Sat, 05 Oct 2052 13:55:44 GMT
last-modified: Tue, 04 Oct 2022 17:08:08 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/661443/f6fc19ecea77c281ff4e.js | 178.154.131.216 | 200 OK | 19 kB |
URL HTTP/2yastatic.net/partner-code-bundles/661443/f6fc19ecea77c281ff4e.js IP178.154.131.216:0
File typeHTML document, ASCII text, with very long lines (65494) Hash311138aa7fa1a5d7539781e2aa606f5c f887971d2f613de307b30240536b35ba478577a7 6c1d45b1a45e1c167767d13d56f94379bc008eeae1110ab0f4f15e025474cfbc
GET /partner-code-bundles/661443/f6fc19ecea77c281ff4e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Thu, 06 Oct 2022 07:21:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 18936
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "311138aa7fa1a5d7539781e2aa606f5c"
expires: Sat, 05 Oct 2052 13:55:44 GMT
last-modified: Tue, 04 Oct 2022 17:08:08 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:15 GMT
access-control-allow-origin: *
etag: "633be002-2b"
expires: Thu, 06 Oct 2022 08:21:15 GMT
accept-ranges: bytes
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=280488055&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=393290845&gjid=1502427633&cid=1545726378.1665040875&tid=UA-4459188-1&_gid=663565899.1665040875&_r=1&_slc=1&z=563666107 | 142.250.74.174 | 200 OK | 2 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=280488055&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=393290845&gjid=1502427633&cid=1545726378.1665040875&tid=UA-4459188-1&_gid=663565899.1665040875&_r=1&_slc=1&z=563666107 IP142.250.74.174:0
File typeASCII text, with no line terminators Hash38684612f0c6bb6dfa16da92f4a6878f 6fe62d0dd7db314b7f9bb945672f078e01d27f0f a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=280488055&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=393290845&gjid=1502427633&cid=1545726378.1665040875&tid=UA-4459188-1&_gid=663565899.1665040875&_r=1&_slc=1&z=563666107 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mydiv.net
date: Thu, 06 Oct 2022 07:21:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7605
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 07:21:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7605
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 07:21:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7605
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 07:21:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7605
Expires: Thu, 06 Oct 2022 09:28:00 GMT
Date: Thu, 06 Oct 2022 07:21:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash00e43396123462b87cf3d3592dd71f02 8c895a5716462c161f98637053cac4469eaaea33 2fc70d34c11b2fc338714930bdf6efa14a1c3d4d7560a43061aea41c83ec4d2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F523563fe-7c63-4bf8-82a9-5a22c254cf4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10390
x-amzn-requestid: 3a01001b-3f8a-4118-9cce-af68e92b78bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjP2EEV4oAMFcqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df9c0-254f65637b3d98f8268fe321;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:40:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 7PsyVPG6o3G08CoNRuiY3iS-JL658WfKzUZQQTy4coWbKlYIQn5-Eg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:45:34 GMT
age: 34541
etag: "8c895a5716462c161f98637053cac4469eaaea33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 55 kB |
URL HTTP/2mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
Hash4eea3f07f3cbfc77ab82b0c43eb368bf 68f245f4211b877836d4f22d380ed2f2ab67ca40 cff755be3e0e92ec1b8e38e121bb2e6a5dd71c1d97e108853aa1611d827a309d
GET /build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: text/css
last-modified: Tue, 24 May 2022 08:09:26 GMT
vary: Accept-Encoding
etag: W/"628c92b6-29bae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg | 34.120.237.76 | 200 OK | 3.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1a1a279f8386262762dcf70621e06ed5 0e1d6cefe5ffe1994f26322962df8b0a13743339 a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3777
x-amzn-requestid: 093c576f-e1f7-4d45-9f8c-7ca3e7539313
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtDEpSIAMF_Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df986-3cbcc83c1db24bbf193c3047;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GXneoYCI_hqJxLyI-RAxkJJf08pBsc6usoQlztb3HHPQSd1PDh7kgQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:47 GMT
age: 34108
etag: "0e1d6cefe5ffe1994f26322962df8b0a13743339"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2277f8f2d93b4bc3b05d348343177892 531d9e4ec9078cd2d7376a19fcb287084af36c82 62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: TlEKsCdhNhlKmA2Yhz8FarEUG18gQZMKGRD6SnzCnUMiKyGS9-UeOQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:38:04 GMT
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
age: 34991
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg | 34.120.237.76 | 200 OK | 6.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash746e3c38e01d58e6fa0728798221a830 b19dd1d42995ea4242505b152e77835442341581 c524a2e7e29690030b7402077f711e643674c8f42de071214f3909b447fb1e3b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73af78d1-5736-4820-b1cd-2746dc2b907b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6933
x-amzn-requestid: aa50b0cd-e931-49a9-bce3-00366738aea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPtNGKPoAMF6UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df987-77a4f8306103dcdf3de7d1fd;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:19 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: J6TTFpH3OGVu4hTFbLlatmlwGGOiEshSdr4xUCdCKog4kUAA5TyBSQ==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:10:54 GMT
age: 33021
etag: "b19dd1d42995ea4242505b152e77835442341581"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg | 34.120.237.76 | 200 OK | 4.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdbba56f647bf5989ca51863632bbebfc 26694f34166345ee5693653e0101db6b910e68ba ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: 13fcd792-1fcc-44b5-aa9e-d2773a60fe77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uHrbIAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-5b5f5d781b9d651b68c04f2e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: wfnbRpTKni8hbAmJXO9vdisV6ZPoRP-eBb3wP4RzPS7MlXvp7282dw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:36:41 GMT
age: 35074
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1b835b5a437ac8178465678803bb979f fc037d7624b4dcdbb20992045e0abfa80ccaf5eb 6e2438b55d96e61a9effc80d9d3fb435e7fcd9736a1b54c7c1c8681978ecb75c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1d4c3917173bd92c4b3208cdf2c7c345 726a9aa16eef5844afde825f9faf1b505d31e69b 572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashf9371f81e2eeeead7fe351a49f3b1c40 ae23d6c6c57dd7cf568c3a74594c377b7bb7df43 03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 | 172.217.21.162 | 200 OK | 199 B |
URL HTTP/2partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 IP172.217.21.162:0
File typeASCII text, with no line terminators Hashcb70883b985e4fa1229a252eb6307855 dc44a66e9813fc55f2434f9bc0573c2f9a839d17 99fcd165774f85625781ada495fb59b62b55e8159d6bd1abf512fb6abf38ffc6
GET /gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 06 Oct 2022 07:21:15 GMT
server: cafe
cache-control: private
content-length: 199
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.no/adsid/integrator.js?domain=mydiv.net | 142.250.74.98 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=mydiv.net IP142.250.74.98:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 06 Oct 2022 07:21:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.com/adsid/integrator.js?domain=mydiv.net | 142.250.74.66 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=mydiv.net IP142.250.74.66:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 06 Oct 2022 07:21:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1b835b5a437ac8178465678803bb979f fc037d7624b4dcdbb20992045e0abfa80ccaf5eb 6e2438b55d96e61a9effc80d9d3fb435e7fcd9736a1b54c7c1c8681978ecb75c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash1d4c3917173bd92c4b3208cdf2c7c345 726a9aa16eef5844afde825f9faf1b505d31e69b 572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashf9371f81e2eeeead7fe351a49f3b1c40 ae23d6c6c57dd7cf568c3a74594c377b7bb7df43 03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaf1423361d37c5204878438841fbd2c4 9103c586f98e9d422ef1dd4bf0ea7bad3f03d697 2dd0f2face59ffc40651acbae4fd758cba0effc2b3aa1ef2326268eec896ded6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashaf1423361d37c5204878438841fbd2c4 9103c586f98e9d422ef1dd4bf0ea7bad3f03d697 2dd0f2face59ffc40651acbae4fd758cba0effc2b3aa1ef2326268eec896ded6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tpc.googlesyndication.com/pagead/js/r20221003/r20110914/abg_lite_fy2021.js | 142.250.74.33 | 200 OK | 9.5 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20221003/r20110914/abg_lite_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1624) Hash34ab0675c75e45ff3a7d26deeba3b7b5 107ab2ee1dcf23544643915b7deeac3f4810f623 8b64de46f29644054e532eb882d60485c1019d0219d729c35fbe8a586133a48c
GET /pagead/js/r20221003/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9540
x-xss-protection: 0
date: Thu, 06 Oct 2022 06:57:41 GMT
expires: Thu, 20 Oct 2022 06:57:41 GMT
cache-control: public, max-age=1209600
etag: 6580860447119072478
content-type: text/javascript; charset=UTF-8
age: 1415
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js | 142.250.74.33 | 200 OK | 7.5 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1494) Hash3304a6f98a75044bb4421199c7dc75e9 abd6494aeb49a2bacc3754c8d92cc10b855a63b7 4328f9f5f12fc419ce804827b962689ea88b31cfe4db01cf301cbc57aef3ba09
GET /pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7528
x-xss-protection: 0
date: Thu, 06 Oct 2022 07:08:52 GMT
expires: Thu, 20 Oct 2022 07:08:52 GMT
cache-control: public, max-age=1209600
etag: 13775775994264215463
content-type: text/javascript; charset=UTF-8
age: 744
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 | 142.250.74.2 | 200 OK | 45 kB |
URL HTTP/2www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 IP142.250.74.2:0
File typeASCII text, with very long lines (3498) Hashbd7876f9970dad86c8d29b630ec103c5 27e7a0d9bedb3e711708049fce7a8bb09b4721fc 37094988b85e9a49b6146ff7724d05aeb3cbb02efe4eeb68f095c8d2cdfc4453
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 45072
date: Thu, 06 Oct 2022 07:21:16 GMT
expires: Thu, 06 Oct 2022 07:21:16 GMT
cache-control: private, max-age=3000
etag: "1664970042070988"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash40a4de06678d96242b71d5318f2fd4ef 546a7d1d92df81916f14155943427b5453ae3924 aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash40a4de06678d96242b71d5318f2fd4ef 546a7d1d92df81916f14155943427b5453ae3924 aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb0e8a79f3e381ab34a44278947ac7c7e 70d01e6fdc8565c661b6ae8c5a043ddf2da16530 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/pagead/drt/ui | 142.250.74.164 | 302 Found | 0 B |
URL HTTP/2www.google.com/pagead/drt/ui IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 07:21:16 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/ads/measurement/l?ebcid=ALh7CaR8Ia7fJmJfaKxYqjaglVX2_znv_udr5H-j-U_c1vENauAuWi8OcvhwAwoEevUhVy0tJf8AoBap8F80eq0xpBbZ51weoA | 142.250.74.164 | 204 No Content | 0 B |
URL HTTP/2www.google.com/ads/measurement/l?ebcid=ALh7CaR8Ia7fJmJfaKxYqjaglVX2_znv_udr5H-j-U_c1vENauAuWi8OcvhwAwoEevUhVy0tJf8AoBap8F80eq0xpBbZ51weoA IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaR8Ia7fJmJfaKxYqjaglVX2_znv_udr5H-j-U_c1vENauAuWi8OcvhwAwoEevUhVy0tJf8AoBap8F80eq0xpBbZ51weoA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 07:21:16 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb0e8a79f3e381ab34a44278947ac7c7e 70d01e6fdc8565c661b6ae8c5a043ddf2da16530 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/mysidia/270cb447f650f22be90b4349b85576c2.js?tag=mysidia_one_click_handler_one_afma_2019 | 142.250.74.163 | 200 OK | 14 kB |
URL HTTP/2www.gstatic.com/mysidia/270cb447f650f22be90b4349b85576c2.js?tag=mysidia_one_click_handler_one_afma_2019 IP142.250.74.163:0
File typeC++ source, ASCII text, with very long lines (1792) Hash10e6f3bdb6fae70ad38bdf5dbf63ec92 9bc2aed43500f7a96923397c67624983f7593c77 07cfe15791ca91426412f72bbd4300bb7b19b5fd976285a9071861dc3c90e779
GET /mysidia/270cb447f650f22be90b4349b85576c2.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 13677
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:39:23 GMT
expires: Tue, 03 Jan 2023 06:39:23 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 27 Sep 2022 00:52:44 GMT
content-type: text/javascript
age: 88913
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf24f49dce99bf22d6f1834c2f702f1f4 5c683d0f6be8cd1a60d95a0cb892007f4363005a 3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf24f49dce99bf22d6f1834c2f702f1f4 5c683d0f6be8cd1a60d95a0cb892007f4363005a 3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf24f49dce99bf22d6f1834c2f702f1f4 5c683d0f6be8cd1a60d95a0cb892007f4363005a 3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2 | 216.58.207.195 | 200 OK | 21 kB |
URL HTTP/2fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 20784, version 1.0\012- data Hashe11c810c086df83c0876dd59ed32ebcb b89fe2ed6d016f81af13b35797ad2b0e2e5c6822 acc5497e76f832d950d14fcfa047dc3c864f7a0aae4c7a20521c0c655a53033b
GET /s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20784
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 22:12:06 GMT
expires: Wed, 04 Oct 2023 22:12:06 GMT
cache-control: public, max-age=31536000
age: 119350
last-modified: Tue, 19 Apr 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf24f49dce99bf22d6f1834c2f702f1f4 5c683d0f6be8cd1a60d95a0cb892007f4363005a 3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/dynamic/5/177516557/3837761401553550313_16802005467869128823.png | 142.250.74.166 | 200 OK | 28 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/3837761401553550313_16802005467869128823.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash0d004d7e5493145a1e503524115177c5 70c27ce92fe7085cc667d51310a4119914079daf 67e3cb2d304450f8181f614d8a262742ee65973150075f87dcf429a6a13ad798
GET /dynamic/5/177516557/3837761401553550313_16802005467869128823.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 27935
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 11:22:42 GMT
expires: Sat, 30 Sep 2023 11:22:42 GMT
cache-control: public, max-age=31536000
age: 503914
last-modified: Wed, 07 Apr 2021 11:14:08 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/3063122744524568342_2460036901614745743.png | 142.250.74.166 | 200 OK | 42 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/3063122744524568342_2460036901614745743.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash2e345545e934bc31e9bba4d415381e89 1ab37d9bc3cefa063aaa8d229e4a16a158b416d7 efeb9fe86507fb065e5bdfa44235f5cd10e92b29a1b0c4da6da5693796685eca
GET /dynamic/5/177516557/3063122744524568342_2460036901614745743.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 42381
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 07:58:33 GMT
expires: Fri, 29 Sep 2023 07:58:33 GMT
cache-control: public, max-age=31536000
age: 602563
last-modified: Wed, 07 Apr 2021 11:17:10 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/9873682409865366195_14426972903066239342.png | 142.250.74.166 | 200 OK | 41 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/9873682409865366195_14426972903066239342.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hasha845d7b20dec6eb56975e7e07a27e693 9422de64fabce48f765cc88ff9b0b32c8f9a39f3 efb941597a992a4d7b4f2e2a09e85210e4a7623fa1a871629146c5a655a24a12
GET /dynamic/5/177516557/9873682409865366195_14426972903066239342.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 41036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 11:13:55 GMT
expires: Sat, 30 Sep 2023 11:13:55 GMT
cache-control: public, max-age=31536000
age: 504441
last-modified: Fri, 12 Jun 2020 14:11:52 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/983724964064591806_11876275537438202003.png | 142.250.74.166 | 200 OK | 17 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/983724964064591806_11876275537438202003.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash9a4c42d08d8c738f808a72e977f5b87e 71a8459955fe0ac5e2c686b4d98b99636434ec70 8bc3bb221f0e00b683b9e1aad012282eadc479095919da7317f3f9a66a7e136a
GET /dynamic/5/177516557/983724964064591806_11876275537438202003.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 16772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 21:42:59 GMT
expires: Fri, 29 Sep 2023 21:42:59 GMT
cache-control: public, max-age=31536000
age: 553097
last-modified: Fri, 12 Jun 2020 14:11:56 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf24f49dce99bf22d6f1834c2f702f1f4 5c683d0f6be8cd1a60d95a0cb892007f4363005a 3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 07:21:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=628256901&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=628256901&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=628256901&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 137253
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:18 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:18 GMT
last-modified: Thu, 06-Oct-2022 07:21:18 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=773079267&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=773079267&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=773079267&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040879%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072118%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040879&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:18 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:18 GMT
last-modified: Thu, 06-Oct-2022 07:21:18 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=166111293&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040880%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072119%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040880&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=166111293&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040880%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072119%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040880&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=166111293&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040880%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072119%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040880&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 320
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:19 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:19 GMT
last-modified: Thu, 06-Oct-2022 07:21:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wv-check=43074&wv-type=0&wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=127886914&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wv-check=43074&wv-type=0&wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=127886914&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=43074&wv-type=0&wmode=0&wv-part=1&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=127886914&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:22 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:22 GMT
last-modified: Thu, 06-Oct-2022 07:21:22 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=740904592&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=740904592&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=740904592&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:22 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:22 GMT
last-modified: Thu, 06-Oct-2022 07:21:22 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=191920295&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=191920295&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=419578946&page-url=https%3A%2F%2Fmydiv.net%2F&rn=191920295&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665040882%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221006072122%3Au%3A1665040875253585242%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1665040882&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 07:21:22 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 07:21:22 GMT
last-modified: Thu, 06-Oct-2022 07:21:22 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mydiv.net/ | 54.36.106.111 | 200 OK | 0 B |
IP54.36.106.111:0
GET / HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.5
set-cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; domain=.mydiv.net; path=/; expires=Sun, 09-Oct-2022 07:21:13 UTC
ifh=659738403633e81e9d65e22.21782019; domain=.mydiv.net; path=/; expires=Sun, 09-Oct-2022 07:21:13 UTC; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Google%20Sans%20Display%3A400 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Google%20Sans%20Display%3A400 IP142.250.74.10:0
GET /css?family=Google%20Sans%20Display%3A400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 07:21:16 GMT
date: Thu, 06 Oct 2022 07:21:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip | 51.75.52.14 | 302 Found | 0 B |
URL HTTP/2s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip IP51.75.52.14:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrc1tb2z0luzsyxnolurvy3rvci5odg1s/769b3/63105a960385c/soft/dfiles/ru/win/d-soft-flash-doctor/364432/flash_doctor_104.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Thu, 06 Oct 2022 07:21:13 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
GET /build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=d4a688dc2e9505ac29d4ce4eae55368adf60a6257fdaadc62d2838954254b059; ifh=659738403633e81e9d65e22.21782019
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Thu, 06 Oct 2022 07:21:14 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-46126"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|