| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar | 51.75.52.14 | 301 Moved Permanently | 185 B |
URL HTTP/1.1s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar IP51.75.52.14:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4c555068310076e85908835c721911f5 9ec990aabb4391e139034f68e5e657e0f1d0b74d 568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Tue, 04 Oct 2022 15:41:43 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash1b3053fa528e28810f8a2cc9284cc921 cca9eb471d941881a6b9a1793aecb6c281908f6a a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 14:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5SAarVWKN01LsP6c6tybCeW2nRcbiWMnUznS8VC49PttVcrGny2Vvg==
Age: 3280
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9955bda9c9ef64bc5700a14af0bae25e 8de7b7469e905af0374bdfcc3006bbb844f13e94 1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5055
Expires: Tue, 04 Oct 2022 17:05:59 GMT
Date: Tue, 04 Oct 2022 15:41:44 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K54WebrCXQauGhkeL6hFFdkeVDu_cZ6YEC9J_rvQPgx1BE6A_kkSfw==
age: 36797
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash33daaeecf29b4420b137b9983c0a8c58 b724d33ba0f6dcbfe03604f9ac3fe3cf2c6b72f6 f9776c71a957b194e2256ef58bb77def1fc72c66f7660c44a2fe4c705612972d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9776C71A957B194E2256EF58BB77DEF1FC72C66F7660C44A2FE4C705612972D"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20342
Expires: Tue, 04 Oct 2022 21:20:46 GMT
Date: Tue, 04 Oct 2022 15:41:44 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 15:41:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 15:29:33 GMT
Expires: Tue, 04 Oct 2022 16:18:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZQCxHpYXsKQ8W17XdvZx3UmQpc1x0iSFNezfpwinEakQ7b27abl5Ag==
Age: 731
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash16ebfb2aa621547ecf581e26fc828a7d f78993331f6f5b8af6409a9ad2fc50b77070f68a 0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3138
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:44 GMT
Last-Modified: Tue, 04 Oct 2022 14:49:26 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 44.236.232.139 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.236.232.139:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 91vZkJLOecOuP/RMdsh2qw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AocIzEoWRo6wrkEP8ULKozE6aqA=
|
|
| mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg | 54.36.106.111 | 200 OK | 3.3 kB |
URL HTTP/2mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg IP54.36.106.111:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3315), with no line terminators Hashc141857003053201a2b0239f9c2571a4 ed829bb667018790d2256bdb84cbc40e910b890d f4a8a85124370b95447eb9818a3feb3c646f126cf7abd4f80c80605e38b80a10
GET /build/public/images/c141857003053201a2b0239f9c2571a4.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/svg+xml
content-length: 3315
last-modified: Wed, 04 May 2022 16:07:08 GMT
etag: "6272a4ac-cf3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Discord.gif | 54.36.106.111 | 200 OK | 946 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Discord.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash863bd8be9dbe3fc6ea1c2ebe5e17b0f2 0b8090fa9037490c85fa5bc389e9f89a83540862 0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 946
last-modified: Tue, 30 Aug 2022 10:47:27 GMT
etag: "630deabf-3b2"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/uTorrent.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/uTorrent.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd8b3a7cb134c0c01d8b730eb52efa445 e5f8e04f40a7149aa1be7256634f86cf370ab7af 8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1477
last-modified: Mon, 19 Sep 2022 16:18:59 GMT
etag: "63289673-5c5"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/BlueStacks.gif | 54.36.106.111 | 200 OK | 1.4 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/BlueStacks.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashde4422d577c482189dfe5966c7362737 473e997d0ded39d3ccb1c54f874576c71cc1405f ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1438
last-modified: Tue, 04 Oct 2022 13:08:00 GMT
etag: "633c3030-59e"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zoom.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zoom.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf016ef461c4b5d433f2b75874a3fa9f0 84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1713
last-modified: Mon, 26 Sep 2022 21:18:42 GMT
etag: "63321732-6b1"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/MediaGet.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/MediaGet.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashb69d7ccb1c036103aaf41086187b37fa 3cec81950db96a58ac7da7a216777c18f960ce0a 2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1589
last-modified: Mon, 13 Jun 2022 09:32:04 GMT
etag: "62a70414-635"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zona.gif | 54.36.106.111 | 200 OK | 485 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zona.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashaf31d9cab2614849c9f71f67744d5fe3 51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec 885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/WinRAR.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/WinRAR.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hashde072b93dbf65068ccfc9a91e722ae90 51e63f9279c737c782e9fce4d1991a2286eb1b65 5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1484
last-modified: Sat, 14 May 2022 06:43:23 GMT
etag: "627f4f8b-5cc"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/CCleaner.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/CCleaner.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash28ecdadc6ce55c1c52937fe69634148f 53a1e07d37c4f4e940dcf928f071e1e9698cef5c 56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1626
last-modified: Tue, 20 Sep 2022 12:59:01 GMT
etag: "6329b915-65a"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Steam.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Steam.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash86c651e4629614e6c3d484025d31ec96 83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033 e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1464
last-modified: Fri, 30 Sep 2022 01:28:11 GMT
etag: "6336462b-5b8"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Rufus.gif | 54.36.106.111 | 200 OK | 860 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Rufus.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash8c927578b093422fe11e609f10c18aca 1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a 13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 860
last-modified: Thu, 04 Aug 2022 08:36:46 GMT
etag: "62eb851e-35c"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf31881c998b0af01243f70cb5a1aedfc 56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7 ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1689
last-modified: Thu, 14 Jul 2022 18:06:37 GMT
etag: "62d05b2d-699"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/7-Zip.gif | 54.36.106.111 | 200 OK | 401 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/7-Zip.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash769824aa176b2636b1640c3d60afb524 655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9 f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 401
last-modified: Sat, 16 Jul 2022 17:26:25 GMT
etag: "62d2f4c1-191"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif | 54.36.106.111 | 200 OK | 929 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash9833effb5dd42a027e756f796ddf4cfe 9e99332744c5484e396a029a9d34bf957dff3f73 2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 929
last-modified: Wed, 28 Sep 2022 03:58:35 GMT
etag: "6333c66b-3a1"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif | 54.36.106.111 | 200 OK | 964 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash11c35a7e206514cf071c7ad75efee9a6 946062bc95112ae2b7e73a5e33d0a2884d983e34 bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 964
last-modified: Wed, 24 Aug 2022 14:25:20 GMT
etag: "630634d0-3c4"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash84cfb69793f19552fdda4e7ff93ff571 b74176c770ae2a5e7591cf0c220c2031394e343a c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1014
last-modified: Wed, 24 Aug 2022 16:09:40 GMT
etag: "63064d44-3f6"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash475687f8d9f500bd84aff0051af75dc0 747eb724c7cd54c9cc583ec2eb034a04accb7cef 4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1023
last-modified: Sun, 02 Oct 2022 15:42:15 GMT
etag: "6339b157-3ff"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/xmedia-recode.gif | 54.36.106.111 | 200 OK | 370 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/xmedia-recode.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash96d60c2a548f35a8d95e82e4cbca1912 a2168fccd77c90a73e7ecee2546e24c4d6344e15 823175ac4f76a485759b2ab8c35086d94e207aa00158d07e75bfd32e2b25f29c
GET /images/ru/win/icons/xmedia-recode.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 370
last-modified: Mon, 03 Oct 2022 19:15:09 GMT
etag: "633b34bd-172"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/DxWnd.gif | 54.36.106.111 | 200 OK | 268 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/DxWnd.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash98aa15a5eb8d72b590e7a06fbd9049db 8e571cb4d3b10cc1542083b5e1301f38a74da5be 520c1d8e55c4c4d97ebe8bad3f3e101fa9bd6d281faddf9897630dfe630f8308
GET /images/ru/win/icons/DxWnd.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 268
last-modified: Mon, 03 Oct 2022 19:13:01 GMT
etag: "633b343d-10c"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/GeoGebra.gif | 54.36.106.111 | 200 OK | 771 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/GeoGebra.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd806c95f224c6d1e7ce98d99afd21619 c3a7c70ec2dba798454abab5d38c6e90c7671296 b8b928962ddc635d13c3b42c570eee15e1e6fb2851fb1d92b05c3d0e78834788
GET /images/ru/win/icons/GeoGebra.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 771
last-modified: Mon, 03 Oct 2022 19:09:59 GMT
etag: "633b3387-303"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Karaoke.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Karaoke.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf2dc985ed1cfb2d24a8a9e282afdc54d 6af10ddcf07ddc242ae3e66661708579428addba 6138edab8e4f297d5caa530a82015e0add01ec8898300e39cda399a4255f9919
GET /images/ru/win/icons/Karaoke.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1709
last-modified: Mon, 03 Oct 2022 19:05:42 GMT
etag: "633b3286-6ad"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/FlippingBook-Publisher.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/FlippingBook-Publisher.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash56e735b3299947387277079fc5ca898b 230b2d2b28a7e0e85e24041f899e80d364b75b53 e3b8b1030182d9b57a2c1bd6b88401358aa8ecbfecc800920b1874a3789b4d7f
GET /images/ru/win/icons/FlippingBook-Publisher.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1680
last-modified: Mon, 03 Oct 2022 18:57:26 GMT
etag: "633b3096-690"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/QCAD.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/QCAD.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf1b5496dce4807239fe61b89fac9402e 3541208dc861514532d3353b3c1d58da93321486 4e78f81e2ceea42ffd5db48fd9af9cc8cefe5f5992638a6f2942474be7afa437
GET /images/ru/win/icons/QCAD.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1494
last-modified: Mon, 03 Oct 2022 18:51:16 GMT
etag: "633b2f24-5d6"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Terragen.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Terragen.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd3df3fd21695cb88738b46273668826f b2762e9931e5779bfc027d5cf74c3b2bd424512e 2d747b2487dc845e972cee02d4bfe6654eddd12460b5e704ebf3e26588b3d381
GET /images/ru/win/icons/Terragen.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1008
last-modified: Mon, 03 Oct 2022 18:36:28 GMT
etag: "633b2bac-3f0"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Everything.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Everything.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash5c8d95b34fdac2432db49d78ed8a9a07 53b361fe4f26904d625413fa2252ae143c0fba53 dd84df4cb791f69eae267d38122ab3a7e6bd0afd0c09f13ff4109c9955cd3bb0
GET /images/ru/win/icons/Everything.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1457
last-modified: Mon, 03 Oct 2022 18:19:05 GMT
etag: "633b2799-5b1"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/free-hex-editor-neo.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/free-hex-editor-neo.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashbcb6b8fbada3caa864955e5ce90e7bdd 3572a245cb9bd6a454fb999637e8e4032fc3d64b 7784b1e8bde0d9621cac20194a0fb5de200ec0e48ac6afd44b1dd1f11780ca90
GET /images/ru/win/icons/free-hex-editor-neo.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1452
last-modified: Mon, 03 Oct 2022 17:48:18 GMT
etag: "633b2062-5ac"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Tampermonkey.gif | 54.36.106.111 | 200 OK | 652 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Tampermonkey.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashbd098d8f2096586bda13b62b3b0125a8 41c37c329683fcb523286f9eb39d04e99613c6bb 3f239d27ce55d34983bc34a96fd0688eead7fe3f4aa63d34e886a7060e3e5558
GET /images/ru/win/icons/Tampermonkey.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 652
last-modified: Mon, 03 Oct 2022 17:35:31 GMT
etag: "633b1d63-28c"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/RarmaRadio.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/RarmaRadio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash558eff695a19275a624ecb20d0c184ce 004676540b02697b53bd081b3b86e43f3cff65d2 6746fb9f5c02ef196f7c4f125eebc22383c27b28f1cfafb1d47394893e5da24e
GET /images/ru/win/icons/RarmaRadio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1517
last-modified: Mon, 03 Oct 2022 17:27:44 GMT
etag: "633b1b90-5ed"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Video-Downloader.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Video-Downloader.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash9143c61eb8d4607f43457e99f4f7cbd5 16c2271f022fe885e26cc0a0abe173beedbc5e92 e3820b4675edff8504222138125d26376402ea66a0f2d9b1911425763d6a1e46
GET /images/ru/win/icons/Video-Downloader.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1735
last-modified: Mon, 03 Oct 2022 17:20:44 GMT
etag: "633b19ec-6c7"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif | 54.36.106.111 | 200 OK | 848 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf9f9b152e278ee39af072c7c2e859c3d 5dd5b28438b2fc167d2b6bf4b1ec793b4acdf187 c5d4f6140c445842db62d99db31866ac02b944e818f238573068acd765bc9188
GET /images/ru/win/icons/PRO32-Total-Security.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 848
last-modified: Wed, 14 Sep 2022 17:33:56 GMT
etag: "63221084-350"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 30\012- data Hasha63dd04869627f71db400d73a27b5ca0 dac47496dcf93653fdd2ae8d79ca63d084f6ae66 bb2072bf390060645aeabe023cf3b3dc5c30a85d4be46accaa4874a4186cfd41
GET /images/ru/win/icons/Microsoft-Excel.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1619
last-modified: Thu, 05 May 2022 21:51:54 GMT
etag: "627446fa-653"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash6c8bbb19f01d93c146b12b544eb16262 2819fd34886e161fde3f7b3015c08304cf213798 b5c6cf5d91ab028b95a9007a84317bfbf9699806351edf3ccbdc92ccb0a58bc5
GET /images/ru/win/icons/Microsoft-Word.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1640
last-modified: Thu, 05 May 2022 20:00:12 GMT
etag: "62742ccc-668"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash940d8a94d991a9e988a36281e5952035 419b12a90557636f6e9f2114fc86a0368d5a55e4 8b040e4d326df30674cc378b526329bd2a12f1da1fc50e8c962a2a7929bceceb
GET /images/ru/win/icons/AdGuard-VPN.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1484
last-modified: Fri, 16 Sep 2022 11:13:15 GMT
etag: "63245a4b-5cc"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/R7-Office.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/R7-Office.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash1499cbae0c5daf1847cb5c434bfa7566 132fbdcac2baf80287d427fe49ece5dd4720baab 32c75cce2d6ec258c4c1448621cb4b6f1eaa0b771bfca72075069af4cae2de01
GET /images/ru/win/icons/R7-Office.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1694
last-modified: Thu, 17 Mar 2022 13:37:40 GMT
etag: "623339a4-69e"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/MyOffice.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/MyOffice.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash3d2b9a92a2e317fe7a7686045416148a 9425c7683f8a355faca109b40b17190a9c86c294 118eb30dc6afaff9364a4ff71a3a5bd598d390b8d469fc43c304cac39a18560f
GET /images/ru/win/icons/MyOffice.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1490
last-modified: Tue, 15 Mar 2022 11:26:53 GMT
etag: "623077fd-5d2"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf9bf9be5e6b7befa2aa9a9ccf47e87d9 62ca7e70e430a625a9526541df18db4219dd8ea5 04eae19badca734312ed80cb0fcc2faf01baff045d6a6a5e6905daf13e9f00f6
GET /images/ru/win/icons/Telamon-Cleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1626
last-modified: Sun, 06 Mar 2022 02:40:04 GMT
etag: "62241f04-65a"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash88fe56a42c5999a0142b18179303f9a7 de0d7811d886843fc98d2c97047d725e972947ee 4ea7b4443569a3ceab9d4e4b359f4a01d924846e00e617bd0045f3cbc65afc04
GET /images/ru/win/icons/Armoury-Crate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1766
last-modified: Wed, 19 Jan 2022 00:31:37 GMT
etag: "61e75be9-6e6"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashe8cf700f2ff4a4b559134d26b3fa849c 70dc81bfb5652933be51348263ea0ff258fd3998 e1d4a698910912f734df70d9aa9fe5e210c0a8cd6b62f5e740de8a20ff97ccdf
GET /images/ru/win/icons/HyperX-NGENUITY.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1768
last-modified: Tue, 23 Aug 2022 08:39:22 GMT
etag: "6304923a-6e8"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashb50affa05a63f1ea8339f1f69533ad72 d80325990b6742c14f67044dacb3f581a67f9e3b c197af37f8be5741c380b74550ad3635a655772a6e369f2791cec30d8270db99
GET /images/ru/win/icons/NVIDIA-GeForce-Now.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1812
last-modified: Mon, 03 Oct 2022 15:18:42 GMT
etag: "633afd52-714"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash8c836563ea095a56c60cc1db682ba1a6 9a10d5fc1962be84941e283e178a41251c31a491 9581d845d05fa8ec32b01da9732f7ee7da556fbe271677d3e9c2947b6e74172b
GET /images/ru/win/icons/Microsoft-Office-2021.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1539
last-modified: Sun, 26 Dec 2021 15:18:26 GMT
etag: "61c887c2-603"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Figma.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Figma.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashbc0180a815e6d63d70b2262def7bb0f0 399eab7ec86e08b41691e57bc21e1049b76db3a6 ecd0a19ce6d26ba03550870b6f42f40e4d289c6d5e842ed4ac0819e0ad2de0e4
GET /images/ru/win/icons/Figma.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/gif
content-length: 1809
last-modified: Tue, 05 Apr 2022 21:47:49 GMT
etag: "624cb905-711"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28445_small.jpg | 54.36.106.111 | 200 OK | 9.1 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28445_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashd21f28ce9ef212bb54e71ea9c6411380 0257911ac06d90b7097c84a001ca95f742578541 8f44934fd098b0cad038302d50d97ace212a7491eab25bb659ed50a421c099af
GET /images/arts/ru/screens/28445_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 9145
last-modified: Sun, 02 Oct 2022 19:49:12 GMT
etag: "6339eb38-23b9"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28443_small.jpg | 54.36.106.111 | 200 OK | 11 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28443_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hashf4ec2e491cb08ddfd682c6cd84016776 770bf22857645bdd9b2f2a1734918e61b631ca88 32e8fd76c4526bf9dd630f9583a639d5811fa58c766c04da2695a9094def1324
GET /images/arts/ru/screens/28443_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 11279
last-modified: Sun, 18 Sep 2022 15:01:21 GMT
etag: "632732c1-2c0f"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28442_small.jpg | 54.36.106.111 | 200 OK | 17 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28442_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash15828d360118366377b1419104814af3 8390a95680252e9d4672ec9bd26a9c7ca202d573 b7c45767f2d7c5c9af1b2b0704b7315c4e62dd0fcf6d22b7590730b084e0e03f
GET /images/arts/ru/screens/28442_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 17075
last-modified: Wed, 07 Sep 2022 00:36:28 GMT
etag: "6317e78c-42b3"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28440_small.jpg | 54.36.106.111 | 200 OK | 20 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28440_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash34e6b9f5686d42f769d65da3c703afb3 be3eb1eb6a659519f7d97ded63d51853519454cd 499a3a807b45a524e1d1d9ace22de433c7b91ce04db2d24a411b0e45fc034245
GET /images/arts/ru/screens/28440_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 20282
last-modified: Sun, 14 Aug 2022 14:14:16 GMT
etag: "62f90338-4f3a"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js | 151.101.85.229 | 200 OK | 84 kB |
URL HTTP/2cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js IP151.101.85.229:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (593) Hash5df383641efa0a3ba4302c7fec8d6394 f0cec22d20f41110ab644ee246201cb8787379b0 10fb3cdc6d2cbc33aa86bd81a8325449c04d227555a8a9f504deb8cfb0f16e91
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.245.0
x-jsd-version-type: version
etag: W/"33a2f-8LAWo/m1uPKVR6/desBN4giRHHM"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:41:45 GMT
age: 23444
x-served-by: cache-fra19157-FRA, cache-bma1639-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 83822
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28439_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28439_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 190x190, components 3\012- data Hash70a04d63129725567c2182f64f0d1af1 bd3ac462016f4eaa9d40a45842bca46b37bf1e9b f85c61c2615cfa6524e9956c840a2a424940fac22d252c711ee639b01c785535
GET /images/arts/ru/screens/28439_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 14905
last-modified: Sat, 30 Jul 2022 22:51:54 GMT
etag: "62e5b60a-3a39"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28438_small.jpg | 54.36.106.111 | 200 OK | 7.0 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28438_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash3009c49202998ab4cd1216520a8cc819 2fb13ed4c45430c3b4c9ccaeeb55da24c2caf748 5faeae1034449278fe2ef1e5965b3406d7225272a3d0b192ca04c47b0f0418d2
GET /images/arts/ru/screens/28438_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 6953
last-modified: Tue, 12 Jul 2022 21:13:06 GMT
etag: "62cde3e2-1b29"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28436_small.jpg | 54.36.106.111 | 200 OK | 11 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28436_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hashe9a1e586d89757c51c435f35fb623c99 191e70d270b703136a23a0b700332cf701038887 023b908efcb5a0d08961b40e16d0b8c06e0d3a69e08fe369d1b2f8f062da03d5
GET /images/arts/ru/screens/28436_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 11359
last-modified: Fri, 01 Jul 2022 02:45:56 GMT
etag: "62be5fe4-2c5f"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28435_small.jpg | 54.36.106.111 | 200 OK | 12 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28435_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash8cdac03ec87f15dd49806715294e3f73 ff0b7b256ef5fa2a5df52fad7bac3fbdeaa97e62 086eae1521a24aca3be7bb07a27d76520cc09081c8d8e3708cb34e382c5cb26e
GET /images/arts/ru/screens/28435_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 11529
last-modified: Wed, 01 Jun 2022 02:36:31 GMT
etag: "6296d0af-2d09"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28433_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28433_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash43707607b0b610e3b0e8978627b6745e 64c80a94ca4173efbce299440f3dd294f198dc9b 193f60af8fa128a5853a3aeb7f2391a44335f7dbdc06ec29a82c858e0569035e
GET /images/arts/ru/screens/28433_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 14838
last-modified: Fri, 27 May 2022 19:21:56 GMT
etag: "629124d4-39f6"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28441_small.jpg | 54.36.106.111 | 200 OK | 158 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28441_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Macintosh), datetime=2022:07:28 14:01:21], baseline, precision 8, 190x190, components 3\012- data Size158 kB (158511 bytes) Hash5a4c909ce1a53b3780a8ae729ba2c585 326540caaedad3bd2c782e849b3db910af033783 2c8cfe2cb61febb869cdd0b2afbe6a2df57b3783629dbc18fc61e2de76de9e10
GET /images/arts/ru/screens/28441_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 158511
last-modified: Wed, 31 Aug 2022 14:02:00 GMT
etag: "630f69d8-26b2f"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash195d162678034c3ab84daffa4c4a5723 85fab036e8ab318c51b5c05ff33f2388e5716acd 03e8ce6aa80a44c5f2abf860c3bbf25d8e56fc49458a3f8c11fbe2130b71bb6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| games.mydiv.net/images/screens/72471_small.jpg | 54.36.106.111 | 200 OK | 13 kB |
URL HTTP/2games.mydiv.net/images/screens/72471_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashe03a38f4b7f52d7134eafe7dda13755f 0f789f1a474c49fa5a221d73f74e515f8e7218d3 feac5f8f765dec64703402e27becbfa88e1549c477b207074eba045a0d17e7d0
GET /images/screens/72471_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 13089
last-modified: Sun, 02 Oct 2022 20:56:45 GMT
etag: "6339fb0d-3321"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72466_small.jpg | 54.36.106.111 | 200 OK | 9.5 kB |
URL HTTP/2games.mydiv.net/images/screens/72466_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash227b393f3b5f91804e207b6dc9a57169 3e2c23dea5d23ef8640c421686550b535c058b82 cf15c2f79cdc2a6bddb47ac1567b620ca5eb3d988d00f02ab08044f1648fc9e5
GET /images/screens/72466_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 9539
last-modified: Sun, 02 Oct 2022 16:39:49 GMT
etag: "6339bed5-2543"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72461_small.jpg | 54.36.106.111 | 200 OK | 8.1 kB |
URL HTTP/2games.mydiv.net/images/screens/72461_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashebd753b3d4ce1a16fe861fab2ede51f4 69f60ca1a2a070541cb44b6bfac89961a6dd5a75 080242fe4bf45120f9ec74c7a1e2516a31069c918f6f926fbff2d69a1692e980
GET /images/screens/72461_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 8056
last-modified: Wed, 21 Sep 2022 02:10:51 GMT
etag: "632a72ab-1f78"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72456_small.jpg | 54.36.106.111 | 200 OK | 4.8 kB |
URL HTTP/2games.mydiv.net/images/screens/72456_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash1315c02c0e96c35ca2e051dc9d95664c bb864308628da9bc136d0dbaf3e9b121087ec2d9 9c4e096b7afe94c3dc4e31102e6a480cf42243260fcd2fc598762fc866d5618d
GET /images/screens/72456_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 4790
last-modified: Sun, 18 Sep 2022 15:26:53 GMT
etag: "632738bd-12b6"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72451_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2games.mydiv.net/images/screens/72451_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashe08b5350ba747049494dedeb4ab7c409 133fe8624e0fbea168dc2187cdb0f2bf879be302 56f98fc1eaca77842715b4ecdd5d9c459d4f2462ba7b264fcf5635cbe2089b69
GET /images/screens/72451_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 15208
last-modified: Wed, 07 Sep 2022 10:25:01 GMT
etag: "6318717d-3b68"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72446_small.jpg | 54.36.106.111 | 200 OK | 19 kB |
URL HTTP/2games.mydiv.net/images/screens/72446_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashbecf70ae12a63a8b4f7305914437817b 4d3bafa9331869fbfdcd18a14ce1add3846c51e2 9344865484ed02dc880b48b8c7bb4fed21f7ddfb567435a18d106ace42d2f3ac
GET /images/screens/72446_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 18858
last-modified: Wed, 31 Aug 2022 21:09:08 GMT
etag: "630fcdf4-49aa"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72441_small.jpg | 54.36.106.111 | 200 OK | 16 kB |
URL HTTP/2games.mydiv.net/images/screens/72441_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash981fb09b10326cf19860686cba20d62b 3272ac38c136d7fde4c092e290c0d57c9c98898f 6081e6cc87c64b11e834b68253ec47d8fc9f0244b400239c309f7b38128b70cd
GET /images/screens/72441_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 16506
last-modified: Wed, 31 Aug 2022 19:53:33 GMT
etag: "630fbc3d-407a"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/69355_small.jpg | 54.36.106.111 | 200 OK | 8.7 kB |
URL HTTP/2games.mydiv.net/images/screens/69355_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashda504253ef75615ad9551c23b3224ab3 bcf2ff423726b8fc20e47ba37e279d1caf394298 c9f6c74d478b6789721f4f48f6f5172f5c12bbf1c625f208ad0956e8261b4874
GET /images/screens/69355_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Wed, 29 Jan 2014 07:26:01 GMT
etag: "52e8ad09-21f7"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72436_small.jpg | 54.36.106.111 | 200 OK | 42 kB |
URL HTTP/2games.mydiv.net/images/screens/72436_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2018:05:24 13:23:29], baseline, precision 8, 190x190, components 3\012- data Hashda4f1a1a276a3cba9f2e4c6ced162bed 39747794e91bb5c28bc0c142b9a8b4a41b9c1145 5ff179cb0e8850322ed07d57557b90f06f89cc8bf5c136a39fd55dcd0ae77367
GET /images/screens/72436_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/jpeg
content-length: 41580
last-modified: Mon, 01 Aug 2022 22:55:02 GMT
etag: "62e859c6-a26c"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png | 54.36.106.111 | 200 OK | 4.9 kB |
URL HTTP/2mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png IP54.36.106.111:0
File typePNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data Hashe7812d5843d1bdde5f676ec192619596 33f68a6af0085917a61ec1a04ab007dbc0036afe ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/png
content-length: 4885
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 | 216.58.207.195 | 200 OK | 23 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data Hash70487f355d22aef7eee8f36bca4d03b8 9ffd6785eeaad33637a9c1be6a0c208f346e134e d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:39:48 GMT
expires: Wed, 04 Oct 2023 05:39:48 GMT
cache-control: public, max-age=31536000
age: 36117
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.20.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.20.226:0
Hashbe86d472f93a60e2d6b1d205261496b7 2f99638b84e415a0a997c6348464637732dd5a0f 1f9fa6a1668c20360d158eb2571b23f749afa0ff80f5b068d573d0dd83dabda9
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:45 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "95C18D214F2BA3AD4702C9398FF87F98A21D38F7"
Expires: Wed, 05 Oct 2022 02:00:00 GMT
Last-Modified: Tue, 04 Oct 2022 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2733
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f06086efb0b39-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 | 216.58.207.195 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data Hashf9f3b19c02acf071e57b965bed8f3b02 3dbfd06b63517d349a70537269e6d4dbe6fcaec5 56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:49:50 GMT
expires: Wed, 04 Oct 2023 05:49:50 GMT
cache-control: public, max-age=31536000
age: 35515
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon-192x192.png | 54.36.106.111 | 200 OK | 19 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon-192x192.png IP54.36.106.111:0
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash70289d57de1e3d2dffeb3c3a85418a9c 673136d7d97ebfea4e16a65b2c356b2f4e4f6067 b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/png
content-length: 18575
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-488f"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon.min.svg | 54.36.106.111 | 200 OK | 4.5 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon.min.svg IP54.36.106.111:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators Hashde51b957170a46e23a1a3eaf49df0554 e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2 ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-116f"
expires: Thu, 03 Nov 2022 15:41:45 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash5ba23234dfb31276cc3bf9a347508595 a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3 33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash53e0e5a2455fedae0d6308f91d41e445 237c2856f8a89ae3673ea909164557d65268c463 ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash53e0e5a2455fedae0d6308f91d41e445 237c2856f8a89ae3673ea909164557d65268c463 ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| google-analytics.com/analytics.js | 216.58.211.4 | 200 OK | 20 kB |
URL HTTP/2google-analytics.com/analytics.js IP216.58.211.4:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 15:20:23 GMT
expires: Tue, 04 Oct 2022 17:20:23 GMT
cache-control: public, max-age=7200
age: 1282
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hasha74046c28921b2bd172a085e3872f001 222dd8325f1fa708585dfb71a27e701b2392f1e7 5b97ac527b2c548a8c7f1ae00c8e6ea370487d77eb24cd1b9ab0e448fa74a2da
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:45 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:06:54 GMT
ETag: "222dd8325f1fa708585dfb71a27e701b2392f1e7"
Last-Modified: Tue, 04 Oct 2022 13:06:55 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3553
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f0609583f0b39-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash60dea52abe2437132a0387ad8becc0ac 61e9fb41f1fc795ef7204b8948621d4dbc6d3052 ac998fb48810aeb183ec2d19cfd58b81f2243207add4c553e1e87f00fa6d5f3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.130 | 200 OK | 55 kB |
URL HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.130:0
File typeASCII text, with very long lines (2910) Hash8dd6ee0cdfceb8d16673f03812ebe04f 571987db6c9aceb9a850eb78643c92753e72a5de 3b70518c4ab16e3bf3908853bc9dcb5cbbd857fc3e58e429e136ee07f85b606c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Tue, 04 Oct 2022 15:41:45 GMT
expires: Tue, 04 Oct 2022 15:41:45 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7614240165444867393
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54657
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash53e0e5a2455fedae0d6308f91d41e445 237c2856f8a89ae3673ea909164557d65268c463 ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hash84e2143888b1646609a389288ff448bb 3427073e58bc6b528edad4aa2b8116365a1175c2 1995f9a74b32f3c122bfd2b104b225bb27d5105492597c98f33f93e50af0d498
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:45 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:21:27 GMT
ETag: "3427073e58bc6b528edad4aa2b8116365a1175c2"
Last-Modified: Tue, 04 Oct 2022 13:21:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2809
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f060a08ec0b39-OSL
|
|
| mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 | 87.250.250.119 | 200 OK | 400 B |
URL HTTP/2mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 IP87.250.250.119:0
File typeJSON data\012- , ASCII text, with very long lines (400), with no line terminators Hash07ae820572c87729e7aea516a96d0ecf ae4b2ca73d20edfe15a31a1f6adb5528b8a67f25 0914be7543595146f93b79f4cc647125489cbbd955a10a2e521193abdd824591
GET /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Referer: https://mydiv.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 04 Oct 2022 15:41:46 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:46 GMT
last-modified: Tue, 04-Oct-2022 15:41:46 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:46 GMT
access-control-allow-origin: *
etag: "633be002-2b"
expires: Tue, 04 Oct 2022 16:41:46 GMT
accept-ranges: bytes
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j98&a=1630406726&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2106993642&gjid=8313883&cid=1659906485.1664898105&tid=UA-4459188-1&_gid=638561034.1664898105&_r=1&_slc=1&z=817058856 | 142.250.74.174 | 200 OK | 2 B |
URL HTTP/2www.google-analytics.com/j/collect?v=1&_v=j98&a=1630406726&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2106993642&gjid=8313883&cid=1659906485.1664898105&tid=UA-4459188-1&_gid=638561034.1664898105&_r=1&_slc=1&z=817058856 IP142.250.74.174:0
File typeASCII text, with no line terminators Hash38684612f0c6bb6dfa16da92f4a6878f 6fe62d0dd7db314b7f9bb945672f078e01d27f0f a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=1630406726&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2106993642&gjid=8313883&cid=1659906485.1664898105&tid=UA-4459188-1&_gid=638561034.1664898105&_r=1&_slc=1&z=817058856 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mydiv.net
date: Tue, 04 Oct 2022 15:41:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) | 87.250.250.119 | 302 Found | 117 kB |
URL HTTP/2mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) IP87.250.250.119:0
Size117 kB (117163 bytes) Hash750d857a191ac36f2ae4af375068744f 0f585cb188d108fffb080d417d0a733c09bf0b42 471515cdac8432c4d4e9927c36571fce280be8300e7fafbedf54ee608d3a6ed4
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1627%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A331921032621%3Ahid%3A236644343%3Az%3A0%3Ai%3A20221004154145%3Aet%3A1664898105%3Ac%3A1%3Arn%3A1023295657%3Arqn%3A1%3Au%3A1664898105708547381%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C92%2C726%2C0%2C472%2C0%2C%2C238%2C2%2C%2C%2C%2C1620%3Ans%3A1664898103348%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664898105%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 04 Oct 2022 15:41:45 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yandexuid=6839486711664898105; Expires=Wed, 04-Oct-2023 15:41:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6839486711664898105; Expires=Wed, 04-Oct-2023 15:41:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2573411801664898105; Path=/; SameSite=None; Secure
i=FS4VsacmUSX7zpWDO3xgTUEYRAdZxbW1EhrQQgtnZecz1rie90CURkmvqCO3yRbl25kpKnQw5E7NK1BePoUMRbZl3KU=; Expires=Fri, 01-Oct-2032 15:41:44 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696434105.yrts.1664898105#1696434105.yrtsi.1664898105; Expires=Wed, 04-Oct-2023 15:41:45 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:45 GMT
last-modified: Tue, 04-Oct-2022 15:41:45 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hashcb0aa92f7ccb9dcd11b1f31cf00e8ae4 c53198c4219b6cdcc81892d19bf8065115b29033 5deb807d7fa32fa35921306a63042da9095e81a0c602257ac255ef52b2cdb7b1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:46 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:31:06 GMT
ETag: "c53198c4219b6cdcc81892d19bf8065115b29033"
Last-Modified: Tue, 04 Oct 2022 13:31:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2014
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f060b1a640b39-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hashcb0aa92f7ccb9dcd11b1f31cf00e8ae4 c53198c4219b6cdcc81892d19bf8065115b29033 5deb807d7fa32fa35921306a63042da9095e81a0c602257ac255ef52b2cdb7b1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:46 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:31:06 GMT
ETag: "c53198c4219b6cdcc81892d19bf8065115b29033"
Last-Modified: Tue, 04 Oct 2022 13:31:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2014
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f060b2a4db51e-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hashcb0aa92f7ccb9dcd11b1f31cf00e8ae4 c53198c4219b6cdcc81892d19bf8065115b29033 5deb807d7fa32fa35921306a63042da9095e81a0c602257ac255ef52b2cdb7b1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:46 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:31:06 GMT
ETag: "c53198c4219b6cdcc81892d19bf8065115b29033"
Last-Modified: Tue, 04 Oct 2022 13:31:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2014
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f060b2d9db4ff-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hashcb0aa92f7ccb9dcd11b1f31cf00e8ae4 c53198c4219b6cdcc81892d19bf8065115b29033 5deb807d7fa32fa35921306a63042da9095e81a0c602257ac255ef52b2cdb7b1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:41:46 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 08 Oct 2022 13:31:06 GMT
ETag: "c53198c4219b6cdcc81892d19bf8065115b29033"
Last-Modified: Tue, 04 Oct 2022 13:31:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2014
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754f060b5aca0b39-OSL
|
|
| yastatic.net/safeframe-bundles/0.83/host.js | 178.154.131.216 | 200 OK | 8.9 kB |
URL HTTP/2yastatic.net/safeframe-bundles/0.83/host.js IP178.154.131.216:0
File typeASCII text, with very long lines (33703), with no line terminators Hashf80882bf67cf261aa08d636da095149a 3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd 4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 04 Oct 2022 15:41:46 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Thu, 03 Oct 2052 22:15:01 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/659937/4a3049b518097d5b59b1.js | 178.154.131.216 | 200 OK | 4.5 kB |
URL HTTP/2yastatic.net/partner-code-bundles/659937/4a3049b518097d5b59b1.js IP178.154.131.216:0
File typeASCII text, with very long lines (13242) Hash16cd708feec720641341c22e23f3ac60 9b35a13306eafc260c3e0140beee6d011c5a267e d0aa5c500003f35c25508028b4d7b356edb3bb8e867bc42b17849f5673460dcc
GET /partner-code-bundles/659937/4a3049b518097d5b59b1.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 04 Oct 2022 15:41:46 GMT
content-type: text/javascript; charset=utf-8
content-length: 4452
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "16cd708feec720641341c22e23f3ac60"
expires: Thu, 03 Oct 2052 22:15:56 GMT
last-modified: Fri, 30 Sep 2022 17:01:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/659937/cba9330fbdd5f317ee69.js | 178.154.131.216 | 200 OK | 96 kB |
URL HTTP/2yastatic.net/partner-code-bundles/659937/cba9330fbdd5f317ee69.js IP178.154.131.216:0
File typeASCII text, with very long lines (65497) Hash781898f957d94e8bb801546adddca6d2 4641f9607ea7fc48e1b1a986c0ff99aa6eb4c838 9d80a09f8f1f29ac77342a803fee0f096531d28b5b2616c3d55ecb7d833a41f3
GET /partner-code-bundles/659937/cba9330fbdd5f317ee69.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 04 Oct 2022 15:41:46 GMT
content-type: text/javascript; charset=utf-8
content-length: 96099
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "781898f957d94e8bb801546adddca6d2"
expires: Thu, 03 Oct 2052 22:13:43 GMT
last-modified: Fri, 30 Sep 2022 17:01:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/659937/38e7494e9c17cd75b77c.js | 178.154.131.216 | 200 OK | 19 kB |
URL HTTP/2yastatic.net/partner-code-bundles/659937/38e7494e9c17cd75b77c.js IP178.154.131.216:0
File typeHTML document, ASCII text, with very long lines (65494) Hash866dbd784bf4918e987a1375099c09d1 45e52f8dcc29f00866faa58bfb92a1b7246aef2e c01e0296b298f159e2cb92a0a82b750275f6feaaedd315b6c633a669a162af43
GET /partner-code-bundles/659937/38e7494e9c17cd75b77c.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 04 Oct 2022 15:41:46 GMT
content-type: text/javascript; charset=utf-8
content-length: 18875
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "866dbd784bf4918e987a1375099c09d1"
expires: Thu, 03 Oct 2052 22:15:56 GMT
last-modified: Fri, 30 Sep 2022 17:01:00 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc8ba09e28963a711c7b2ce6c91a3a3a3 7cc64a4bf1691002ed65627d8f5bccd7d742721e e029fc044883da7fbfd828a7c98822fa3bc814ff7e75abf7a7bcbaa64cb395ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash129fe858bf2aa7291fd2c6dd4cf9d226 e3e048b964b851ebbdcfb5bd80ebdbad13720cf6 addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 45 kB |
URL HTTP/2mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
Hash968eced69504b284c1a8ad408e9d669e 623ede077809a810b7e5ade4eb4ab2880249ca83 36181529700c4fea975e519ae494a75d19079748a295ecac6dc6b963dbb60787
GET /build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: text/css
last-modified: Tue, 24 May 2022 08:09:26 GMT
vary: Accept-Encoding
etag: W/"628c92b6-29bae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 | 172.217.21.162 | 200 OK | 198 B |
URL HTTP/2partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 IP172.217.21.162:0
File typeASCII text, with no line terminators Hashc1672a272176c4243d69b8ced3ade3a3 f46d77aac71bd3da45dbbd59f978d864cbfcc726 8ce66a783b99e6cd8b322e4f9a40ccc66d197d891476b998c4ee22ea3234142c
GET /gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 04 Oct 2022 15:41:46 GMT
server: cafe
cache-control: private
content-length: 198
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.com/adsid/integrator.js?domain=mydiv.net | 142.250.74.34 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=mydiv.net IP142.250.74.34:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 04 Oct 2022 15:41:46 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.no/adsid/integrator.js?domain=mydiv.net | 172.217.21.162 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=mydiv.net IP172.217.21.162:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 04 Oct 2022 15:41:46 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 15:41:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 15:41:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 15:41:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5533
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 15:41:46 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg | 34.120.237.76 | 200 OK | 6.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash206fb65e75dbadf119512f71e0b78402 58ff0bf8ce7528b303d28bab01a80ad721705569 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:51 GMT
age: 39535
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc8ba09e28963a711c7b2ce6c91a3a3a3 7cc64a4bf1691002ed65627d8f5bccd7d742721e e029fc044883da7fbfd828a7c98822fa3bc814ff7e75abf7a7bcbaa64cb395ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash54b3ef7aa50273b78b59c24511b0c1f9 e2ea2ef6805e391c497e62e101e76a0bdecfce64 296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 44jC1Ww19YUJjZHw9_3cSSR5Y7nw5df412G-RxWFTcbRz1XDKaT3zQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:35 GMT
age: 64631
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg | 34.120.237.76 | 200 OK | 4.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6779181f9c06975f2a662da743893939 585e7146fd24cdc2496b05baafea04091dc541e2 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 64646
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd8c08f8066cc732de8befd6ccd629a95 22aab05208a01ae5def4d63dc145085630f57bcb f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DOS5kVEVqBrCVMKRw07fX-6HDgWVb9lJwkVM2pXs0PQHys6CBJUVfQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 64646
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg | 34.120.237.76 | 200 OK | 5.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6c6882c60d7ca6f918c77104e3ad1d52 20ef861be49c652a938e0145e4ca3a60159367e2 861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O1yNc4H21kixhUEE7099oNqs7a5ZnJBBjlZbsbmLvaXyzXzrK0dL3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:33 GMT
age: 64633
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf62719b24a32198c6f462a0a0412ac98 d893d8035379e06e53e365b9f47f5da40bff932b ca863affca1559e92e415a4de2e78e4b4c1ec4cf8e8549693499c6f79bd27975
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10878
x-amzn-requestid: a849d918-ec40-47d4-93cb-e938b010bd50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpJKGAPIAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556d-242a8d2208b6574c34063c1f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7ZaoEBhn_F_zDvoalcEpb4PtdGMuU9stAktSCviy5SsaaBaxYUJ6Fg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 64646
etag: "d893d8035379e06e53e365b9f47f5da40bff932b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash129fe858bf2aa7291fd2c6dd4cf9d226 e3e048b964b851ebbdcfb5bd80ebdbad13720cf6 addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe13df37c7a0102aa69d97512e4f3bad4 2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37 cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9e40b2c69615f45f2bc898334ab3e343 6a569648ed10564e126d3bbf3f91352e6b3f6d4f 4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf968b1f629e404e82ff3f3580560fd45 8cb3f06b18a86140f812bf76773b79f4093e4ec5 03ca1d4bc0b331a082a2e8a0886832ec158cb26f3e1bdc77c34747b49aa474eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash29e27164af920fac86b9bd8c0d2c5698 7f38447b2af3c9f1792656da76398fed84064606 0628d60e1936bb923622c3a37fd343cd7d6826757cc21159afd0f30bc23eeeae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019 | 142.250.74.163 | 200 OK | 4.3 kB |
URL HTTP/2www.gstatic.com/mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019 IP142.250.74.163:0
File typeASCII text, with very long lines (1462) Hash229f69a4d55bcd2758013ecc4543088b 6015213bccb29ed4eb62160c8d146e76821caac7 b9db065d054b0db6d427ebc6eaed2873115a9bea45b46a8dfd9b7540e5d01378
GET /mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4282
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 06:56:17 GMT
expires: Thu, 29 Dec 2022 06:56:17 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 27 Sep 2022 07:09:55 GMT
content-type: text/javascript
age: 377130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js | 142.250.74.33 | 200 OK | 7.6 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1494) Hash126f036451fe7f2fc91dd1114d8daef7 9510b9439d0169421dd29b6493bd15fd21816c5e 76548fed45d196bae3076488e40b3fa7347a25f7d076922ba4d53db5263ce9b2
GET /pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7559
x-xss-protection: 0
date: Tue, 04 Oct 2022 15:26:18 GMT
expires: Tue, 18 Oct 2022 15:26:18 GMT
cache-control: public, max-age=1209600
etag: 15289875785628835784
content-type: text/javascript; charset=UTF-8
age: 929
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight | 142.250.74.163 | 200 OK | 4.3 kB |
URL HTTP/2www.gstatic.com/mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight IP142.250.74.163:0
File typeC++ source, ASCII text, with very long lines (1922) Hash33641a012f0b03ca692d59cdafe93aa3 92b8cda707a8b7902616d83825964b1b4e1dc215 95a2b4ef7033fecd9cbe1d822749853b5391eed4f96e3a12278fdc714dbde314
GET /mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 06:56:17 GMT
expires: Thu, 29 Dec 2022 06:56:17 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 27 Sep 2022 07:09:55 GMT
content-type: text/javascript
age: 377130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/pagead/js/r20220928/r20110914/abg_lite_fy2021.js | 142.250.74.33 | 200 OK | 9.6 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20220928/r20110914/abg_lite_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1624) Hash133fde8c1ac7b233618384984b980ae7 ff577b7ec2e43c8eaef430b3875dfd59cf82693c abe394ea4aaeb29c4a08fbd0c0cd3aea525542d7933325db42d7b85bc9598c44
GET /pagead/js/r20220928/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9561
x-xss-protection: 0
date: Tue, 04 Oct 2022 15:13:41 GMT
expires: Tue, 18 Oct 2022 15:13:41 GMT
cache-control: public, max-age=1209600
etag: 483224313611802536
content-type: text/javascript; charset=UTF-8
age: 1686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 | 142.250.74.34 | 200 OK | 45 kB |
URL HTTP/2www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 IP142.250.74.34:0
File typeASCII text, with very long lines (3498) Hash7b354b2d53537a9c3a776265a3a784c1 2a2ce345d4fd809c2cd6cfe314d72b44636a6ed8 e2eed64cf33932336db582539484770cc046173b9929c39c41d20de474b3452b
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44883
date: Tue, 04 Oct 2022 15:41:47 GMT
expires: Tue, 04 Oct 2022 15:41:47 GMT
cache-control: private, max-age=3000
etag: "1664796838458510"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9e40b2c69615f45f2bc898334ab3e343 6a569648ed10564e126d3bbf3f91352e6b3f6d4f 4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc3ab8bf820942d1e8b0b15e2ca70bb23 37739c574978a59036b0b252ff738724073a48c5 30c7472c2564004845b02eb55e19ecac95b0d2eb3ae416dbc3848ecc7bcb093f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb45b15bb651cc185ea82d91a51f06b5a 44987727be72bb12b4e4fc4fac50145835512750 f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/measurement/l?ebcid=ALh7CaRmLjewfhVVA-jWcT_tmfWMOs2054cx7R-SPKN4fr-ncRdtBrz-U3QehARZmoMa66o3ts3nz19Uhz-ZsS_gM8DOLNJkVA | 142.250.74.164 | 204 No Content | 0 B |
URL HTTP/2www.google.com/ads/measurement/l?ebcid=ALh7CaRmLjewfhVVA-jWcT_tmfWMOs2054cx7R-SPKN4fr-ncRdtBrz-U3QehARZmoMa66o3ts3nz19Uhz-ZsS_gM8DOLNJkVA IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaRmLjewfhVVA-jWcT_tmfWMOs2054cx7R-SPKN4fr-ncRdtBrz-U3QehARZmoMa66o3ts3nz19Uhz-ZsS_gM8DOLNJkVA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 15:41:47 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.com/pagead/drt/ui | 142.250.74.164 | 302 Found | 0 B |
URL HTTP/2www.google.com/pagead/drt/ui IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 15:41:47 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 | 216.58.207.195 | 200 OK | 28 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data Hash53b5e785dfdca21fa7adf7119fa1f8cc a3a86dfd216ad29183ba5493ae39d45b62f9d8b8 4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 07:37:25 GMT
expires: Sun, 01 Oct 2023 07:37:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
age: 288262
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash03aa53df423fbcabed7e7ea8b5b21daa c87027f8318719091a2cbcc428c47297fca60a46 3c4c8ae282397bf93a74e824e6cd971d0ba5e5aae0cd81cf679a6bff75dbcb77
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7fcf68ce4ab8a8c46d949f42f2961759 83dcd143e8516eabdd91670eeb6c2a824d1fcf18 ee14566fcde4411a8290f07bc61c28b02e953fc766c8b450f2419479f49b47f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7fcf68ce4ab8a8c46d949f42f2961759 83dcd143e8516eabdd91670eeb6c2a824d1fcf18 ee14566fcde4411a8290f07bc61c28b02e953fc766c8b450f2419479f49b47f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7fcf68ce4ab8a8c46d949f42f2961759 83dcd143e8516eabdd91670eeb6c2a824d1fcf18 ee14566fcde4411a8290f07bc61c28b02e953fc766c8b450f2419479f49b47f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/dynamic/5/177516557/983724964064591806_11876275537438202003.png | 142.250.74.166 | 200 OK | 17 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/983724964064591806_11876275537438202003.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash9a4c42d08d8c738f808a72e977f5b87e 71a8459955fe0ac5e2c686b4d98b99636434ec70 8bc3bb221f0e00b683b9e1aad012282eadc479095919da7317f3f9a66a7e136a
GET /dynamic/5/177516557/983724964064591806_11876275537438202003.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 16772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 21:42:59 GMT
expires: Fri, 29 Sep 2023 21:42:59 GMT
cache-control: public, max-age=31536000
age: 410328
last-modified: Fri, 12 Jun 2020 14:11:56 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/3837761401553550313_16802005467869128823.png | 142.250.74.166 | 200 OK | 28 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/3837761401553550313_16802005467869128823.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash0d004d7e5493145a1e503524115177c5 70c27ce92fe7085cc667d51310a4119914079daf 67e3cb2d304450f8181f614d8a262742ee65973150075f87dcf429a6a13ad798
GET /dynamic/5/177516557/3837761401553550313_16802005467869128823.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 27935
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 11:22:42 GMT
expires: Sat, 30 Sep 2023 11:22:42 GMT
cache-control: public, max-age=31536000
age: 361145
last-modified: Wed, 07 Apr 2021 11:14:08 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/3063122744524568342_2460036901614745743.png | 142.250.74.166 | 200 OK | 42 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/3063122744524568342_2460036901614745743.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hash2e345545e934bc31e9bba4d415381e89 1ab37d9bc3cefa063aaa8d229e4a16a158b416d7 efeb9fe86507fb065e5bdfa44235f5cd10e92b29a1b0c4da6da5693796685eca
GET /dynamic/5/177516557/3063122744524568342_2460036901614745743.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 42381
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 07:58:33 GMT
expires: Fri, 29 Sep 2023 07:58:33 GMT
cache-control: public, max-age=31536000
age: 459794
last-modified: Wed, 07 Apr 2021 11:17:10 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/dynamic/5/177516557/9873682409865366195_14426972903066239342.png | 142.250.74.166 | 200 OK | 41 kB |
URL HTTP/2static.doubleclick.net/dynamic/5/177516557/9873682409865366195_14426972903066239342.png IP142.250.74.166:0
File typePNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Hasha845d7b20dec6eb56975e7e07a27e693 9422de64fabce48f765cc88ff9b0b32c8f9a39f3 efb941597a992a4d7b4f2e2a09e85210e4a7623fa1a871629146c5a655a24a12
GET /dynamic/5/177516557/9873682409865366195_14426972903066239342.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 41036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 11:13:55 GMT
expires: Sat, 30 Sep 2023 11:13:55 GMT
cache-control: public, max-age=31536000
age: 361672
last-modified: Fri, 12 Jun 2020 14:11:52 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7fcf68ce4ab8a8c46d949f42f2961759 83dcd143e8516eabdd91670eeb6c2a824d1fcf18 ee14566fcde4411a8290f07bc61c28b02e953fc766c8b450f2419479f49b47f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:41:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| adservice.google.no/adsid/integrator.js?domain=mydiv.net | 172.217.21.162 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=mydiv.net IP172.217.21.162:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 04 Oct 2022 15:41:47 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=272192496&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=272192496&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=272192496&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 137216
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:49 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:49 GMT
last-modified: Tue, 04-Oct-2022 15:41:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=333332301&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=333332301&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=333332301&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898109%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154148%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898109&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:49 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:49 GMT
last-modified: Tue, 04-Oct-2022 15:41:49 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=457979375&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898110%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154149%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898110&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=457979375&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898110%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154149%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898110&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=457979375&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898110%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154149%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898110&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 283
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:50 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:50 GMT
last-modified: Tue, 04-Oct-2022 15:41:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wv-check=57353&wv-type=0&wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=864781792&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wv-check=57353&wv-type=0&wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=864781792&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=57353&wv-type=0&wmode=0&wv-part=1&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=864781792&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:53 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:53 GMT
last-modified: Tue, 04-Oct-2022 15:41:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=634037351&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=634037351&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=634037351&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:53 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:53 GMT
last-modified: Tue, 04-Oct-2022 15:41:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=39534738&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) | 87.250.250.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=39534738&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) IP87.250.250.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=236644343&page-url=https%3A%2F%2Fmydiv.net%2F&rn=39534738&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664898112%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221004154152%3Au%3A1664898105708547381%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664898112&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 04 Oct 2022 15:41:53 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 04-Oct-2022 15:41:53 GMT
last-modified: Tue, 04-Oct-2022 15:41:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mydiv.net/ | 54.36.106.111 | 200 OK | 0 B |
IP54.36.106.111:0
GET / HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.5
set-cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; domain=.mydiv.net; path=/; expires=Fri, 07-Oct-2022 15:41:44 UTC
ifh=562586900633c5438824055.26681890; domain=.mydiv.net; path=/; expires=Fri, 07-Oct-2022 15:41:44 UTC; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
GET /build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-46126"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar | 51.75.52.14 | 302 Found | 0 B |
URL HTTP/2s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar IP51.75.52.14:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtvg9ycmvudc1uvi5odg1s/8b9a1/631221b342a92/soft/dfiles/ru/win/torrent-tv/320286/torrent_tv_player_2.8.rar HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Tue, 04 Oct 2022 15:41:44 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 IP54.36.106.111:0
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-121a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500 IP142.250.74.10:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 15:41:47 GMT
date: Tue, 04 Oct 2022 15:41:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png IP54.36.106.111:0
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=f42cf9f5867ca81a1b94ae8efbe1e28dc8726fd16f78b247a57531506e6467d7; ifh=562586900633c5438824055.26681890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Tue, 04 Oct 2022 15:41:45 GMT
content-type: image/png
content-length: 1770
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|