r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12568
Expires: Wed, 22 Mar 2023 01:51:48 GMT
Date: Tue, 21 Mar 2023 22:22:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9916
Expires: Wed, 22 Mar 2023 01:07:36 GMT
Date: Tue, 21 Mar 2023 22:22:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 21 Mar 2023 22:14:58 GMT
content-type: application/json
age: 442
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
robocop.ru.malavida.com/
23.13.37.130301 Moved Permanently 0 B IP 23.13.37.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: robocop.ru.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Apache
x-frame-options: SAMEORIGIN
Location: https://robocop.ru.malavida.com/android/
Content-Security-Policy: frame-ancestors 'self';
Access-Control-Allow-Credentials: true
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Tue, 21 Mar 2023 22:22:20 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 21 Mar 2023 22:22:20 GMT
Connection: keep-alive
X-Test: Rule-CacheHonorExpires
Vary: Accept-Encoding
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12989
Expires: Wed, 22 Mar 2023 01:58:49 GMT
Date: Tue, 21 Mar 2023 22:22:20 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YiwtFk9y490J29T+wgky0sZ7TDlGkKZ5F4SXHgshGU9NBGFbGIKNCHQSLgiXqMgSItEOp5eEI9U=
x-amz-request-id: C31YFXBQ16V1XXDZ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 21 Mar 2023 21:53:21 GMT
age: 1739
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 21 Mar 2023 22:22:20 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
robocop.ru.malavida.com/android/
23.13.37.130200 OK 24 kB URL HTTP/2 robocop.ru.malavida.com/android/
IP 23.13.37.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (36352), with CRLF, LF line terminators
Hash 83a3d94c2f72a3c9ab146e47812aab0a
35aaa2a2ae0c4b0075dc5f3daaa4ffeba6681058
b3d427a6c2739b242e08a501b450a94c4929058e81fd1c53e328a30f079e585c
Analyzer Verdict Alert fortinet Phishing
GET /android/ HTTP/1.1
Host: robocop.ru.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN
last-modified: Mon, 20 Mar 2023 06:13:28 GMT
content-encoding: br
content-security-policy: frame-ancestors 'self';
access-control-allow-credentials: true
content-length: 24065
content-type: text/html; charset=UTF-8
expires: Tue, 21 Mar 2023 22:22:20 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 21 Mar 2023 22:22:20 GMT
x-test: Rule-CacheHonorExpires
strict-transport-security: max-age=86400 ; includeSubDomains
vary: Accept-Encoding
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/main-m/robocop-13644-1.jpg
23.13.37.130200 OK 14 kB URL HTTP/2 imag.malavida.com/mvimg/main-m/robocop-13644-1.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 288x180, components 3\012- data
Hash b0e72c6e9388f127e661d23d96ad1ed9
1ac30c66e4a5181b24dd9604d36443458a5cc3b8
8cc0caf6e53ac935b17d6f2bed4b2ccd5ed2d445216be8b934b52064027cab6a
GET /mvimg/main-m/robocop-13644-1.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Tue, 08 Mar 2022 19:37:58 GMT
content-type: image/jpeg
content-length: 13502
cache-control: max-age=7400662
expires: Thu, 15 Jun 2023 14:06:42 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimgbig/download-s/robocop-13644-0.jpg
23.13.37.130200 OK 1.9 kB URL HTTP/2 imag.malavida.com/mvimgbig/download-s/robocop-13644-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Hash 5e4c774584fbb885383ac1416e365b6a
9b22a807a9297ab149b9452544b3945287d441c0
056da0b4ffffc85df80721593a5e227c751b232fc67f7fde7cfefde3aa770d6c
GET /mvimgbig/download-s/robocop-13644-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Tue, 08 Mar 2022 19:37:58 GMT
content-type: image/jpeg
content-length: 1881
cache-control: max-age=7400765
expires: Thu, 15 Jun 2023 14:08:25 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/malavida_logo_mobile.svg
23.13.37.130200 OK 2.0 kB URL HTTP/2 static.malavida.com/global/imag/malavida_logo_mobile.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9fc4b831c27f3147452622a8e4100488
8b1153afc95f02b8ec0e40d735bb5d5a4c6c128e
fc7469f7b19bad1e303c60fc99e64a5cf1a3c7b85a61eb1b7a80a54c516e4480
GET /global/imag/malavida_logo_mobile.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 10 Mar 2020 08:22:29 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 2040
content-type: image/svg+xml
cache-control: max-age=7289694
expires: Wed, 14 Jun 2023 07:17:14 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/malavida_top.svg
23.13.37.130200 OK 1.7 kB URL HTTP/2 static.malavida.com/global/css/img/malavida_top.svg
IP 23.13.37.130:0
File type SVG XML document\012- SVG XML document\012- exported SGML document, ASCII text, with very long lines (4783), with CRLF line terminators
Hash e22ac7179d029d52c8895689a46cd24e
96318545c39a128cbf774624051fca051c1145ee
314b83420af2f4ad04b14ac39c39c1f63a0a4885ab441454505beb34c9dc9f46
GET /global/css/img/malavida_top.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 06 Nov 2017 08:43:44 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 1694
content-type: image/svg+xml
cache-control: max-age=7289729
expires: Wed, 14 Jun 2023 07:17:49 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/star2.svg
23.13.37.130200 OK 406 B URL HTTP/2 static.malavida.com/global/css/img/star2.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 91bb5259a6c0b59e635727685d239899
926a1ad3a5f079f289559a870b14865a1c9c9070
b0d350d7cf529cdc80027153a9bc4cd41dee2ad87e7fc231daec248086337204
GET /global/css/img/star2.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 10 Mar 2020 08:22:29 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 406
content-type: image/svg+xml
cache-control: max-age=7289694
expires: Wed, 14 Jun 2023 07:17:14 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/verified-safety.svg
23.13.37.130200 OK 362 B URL HTTP/2 static.malavida.com/global/imag/verified-safety.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (322)
Hash 6096a4a7692463d3c377db8930937171
6fe963c3b99c52713c76563f39317aa48296bbc2
ae457f09d3da53e2515a44c67d0a36bbe45e362a10de01595b7dd4171c8490cb
GET /global/imag/verified-safety.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 14 Mar 2023 07:07:37 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 362
content-type: image/svg+xml
cache-control: max-age=7289674
expires: Wed, 14 Jun 2023 07:16:54 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/star.svg
23.13.37.130200 OK 349 B URL HTTP/2 static.malavida.com/global/css/img/star.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ccc7982a31f378f7240f7570957305e5
c4d684c33805a2f766bb8b556be108a4c500d1c2
7bcd39c6b7f0797282d7d98322f704bce7a6f053274b65eac9bc3f35cfb9d071
GET /global/css/img/star.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 10 Mar 2020 08:22:29 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 349
content-type: image/svg+xml
cache-control: max-age=7289738
expires: Wed, 14 Jun 2023 07:17:58 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/bg_textarea_comment.png
23.13.37.130200 OK 1.4 kB URL HTTP/2 static.malavida.com/global/css/img/bg_textarea_comment.png
IP 23.13.37.130:0
File type PNG image data, 290 x 118, 8-bit colormap, non-interlaced\012- data
Hash 5a8ccb0d500f9110f8019108b0fed937
a895897ad0c54576d89cd42509aab9bc9af539a4
b820c8792c3c4660141a46a9186eba88b0e2acd588314690883c4652e52ad33c
GET /global/css/img/bg_textarea_comment.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 18 Aug 2016 07:07:23 GMT
accept-ranges: bytes
content-length: 1405
content-type: image/png
cache-control: max-age=7289729
expires: Wed, 14 Jun 2023 07:17:49 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/brawlhalla-28476-0.jpg
23.13.37.130200 OK 956 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/brawlhalla-28476-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 94060509035d6ccedcaf951a1dfa910d
1e630373e4fed815c69fe51948088b0263f01177
e24b95af94d88f8ebe0177a31bdcbf473743aba5e8efb0c88d5d0202d5b698e4
GET /mvimg/soft-xs/brawlhalla-28476-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Mar 2022 23:01:36 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 956
cache-control: max-age=3849516
expires: Fri, 05 May 2023 11:40:56 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/autores/elies.jpg
23.13.37.130200 OK 929 B URL HTTP/2 imag.malavida.com/autores/elies.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 639632e01f979cf53c8596d4201fd788
1888893577378a1d41fa1dce2cf17275c8a83b4c
8263d975082ced2d2166dbe86443ebc6bf3842a5543e68cfb1b66a907a249a9d
GET /autores/elies.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:42 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 929
cache-control: max-age=4238897
expires: Tue, 09 May 2023 23:50:37 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/autores/maria-malinina.jpg
23.13.37.130200 OK 1.3 kB URL HTTP/2 imag.malavida.com/autores/maria-malinina.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 1781eacf86fca96ae1fb3607aeb2dab7
dc7cd79c6ede02de26906a36506b2d542e92bf6c
a862a352c018e79b0532184746d2a7133dfa8b46e498ce8de60d26c2272caead
GET /autores/maria-malinina.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:55 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 1264
cache-control: max-age=4693315
expires: Mon, 15 May 2023 06:04:15 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-user.svg
23.13.37.130200 OK 535 B URL HTTP/2 static.malavida.com/global/imag/ico-user.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (780)
Hash 5547ec9439732362bd8f9c95ccd6b972
6b203684a1b19ea63af8a7caae9a0d9cc35ac550
6797367eb8d875866155701d3c39a35511a0dd3b109ff408d4e390b5fd906037
GET /global/imag/ico-user.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Mar 2021 08:15:46 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 535
content-type: image/svg+xml
cache-control: max-age=7289623
expires: Wed, 14 Jun 2023 07:16:03 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/brawl-stars-21357-0.jpg
23.13.37.130200 OK 971 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/brawl-stars-21357-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash c8255516b3d0fdda0b94cd8972f3205a
6fc451c8e9a6d26506f19422d9b6414acbf45f8e
4d54d3bb35f9c3b7cc0f8956cdc8e3ca355d099e8add6d87466cecbbcab5b137
GET /mvimg/soft-xs/brawl-stars-21357-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:49 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 971
cache-control: max-age=3849447
expires: Fri, 05 May 2023 11:39:47 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/fortnite-20986-0.jpg
23.13.37.130200 OK 723 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/fortnite-20986-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash f83b84a14cc61ed5a12ea68aa566d4cb
2874e9f7701adf7742d360bc63f1299162203587
9eca84b949566aed85d5cbbeb7fb0806adeb4a9bd7c3f33a484d7abc4e3e575f
GET /mvimg/soft-xs/fortnite-20986-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:49 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 723
cache-control: max-age=4469663
expires: Fri, 12 May 2023 15:56:43 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/autores/noimg.jpg
23.13.37.130200 OK 1.0 kB URL HTTP/2 imag.malavida.com/autores/noimg.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash af169bd7b61abca540a16f340c6be219
0ae80c4cfebb9b5412c742623de4f7925fc97394
b6c566e7e15cd7f1bfd157b5fe67f3a4f6d3767fd339bc52892a106eb4d5d31a
GET /autores/noimg.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:42 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 1014
cache-control: max-age=3823079
expires: Fri, 05 May 2023 04:20:19 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/call-of-duty-legends-of-war-22143-0.jpg
23.13.37.130200 OK 896 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/call-of-duty-legends-of-war-22143-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 8462fd115722d4c4a4fea1609feff701
2325089ef49b3782e78a7ba9b992cfb73fc947ef
4b99a91a7272d00ff8419d591a7c375a9af9347504469ca06100c83331c737d5
GET /mvimg/soft-xs/call-of-duty-legends-of-war-22143-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:46 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 896
cache-control: max-age=3338395
expires: Sat, 29 Apr 2023 13:42:15 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/star.svg
23.13.37.130200 OK 349 B URL HTTP/2 static.malavida.com/global/css/img/star.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ccc7982a31f378f7240f7570957305e5
c4d684c33805a2f766bb8b556be108a4c500d1c2
7bcd39c6b7f0797282d7d98322f704bce7a6f053274b65eac9bc3f35cfb9d071
GET /global/css/img/star.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Tue, 10 Mar 2020 08:22:29 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 349
content-type: image/svg+xml
cache-control: max-age=7289738
expires: Wed, 14 Jun 2023 07:17:58 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/main-m/robocop-13644-3.jpg
23.13.37.130200 OK 17 kB URL HTTP/2 imag.malavida.com/mvimg/main-m/robocop-13644-3.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 288x180, components 3\012- data
Hash e8e96cbf32497c1615f2059997ab959e
2e107cb5f5b936866aa54b32152b6ec3d574d4cc
acd36baef631248aac1e4d205f37e98f2b3cd3bb4ff3de7bf1b4c67debd6d492
GET /mvimg/main-m/robocop-13644-3.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Tue, 08 Mar 2022 21:07:52 GMT
content-type: image/jpeg
content-length: 16662
cache-control: max-age=7466015
expires: Fri, 16 Jun 2023 08:15:55 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-android.svg
23.13.37.130200 OK 778 B URL HTTP/2 static.malavida.com/global/imag/ico-android.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (577)
Hash 46317a4625b1ecb7fc51ca12685d62af
e536da1cc37e8f50a91dbbac30c55650b8647006
02dc5f2de9482591dedefc91d369aae8443bade3f5f8b40bf392d22c43933986
GET /global/imag/ico-android.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Mar 2021 08:15:46 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 778
content-type: image/svg+xml
cache-control: max-age=7289660
expires: Wed, 14 Jun 2023 07:16:40 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/pubg-mobile-20855-0.jpg
23.13.37.130200 OK 797 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/pubg-mobile-20855-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash fffd69b8a0f6e482056f4bf887f04f54
45698d73b846e4927650f1c51b5bdf1dd896d96c
ed5a6033367b56743ad869d3e824232008b2225d1afaa4628effb78ee108f541
GET /mvimg/soft-xs/pubg-mobile-20855-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:22:12 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 797
cache-control: max-age=3849400
expires: Fri, 05 May 2023 11:39:00 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-mac.svg
23.13.37.130200 OK 604 B URL HTTP/2 static.malavida.com/global/imag/ico-mac.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (670)
Hash 7d9790acc0ac4c09155db77ad8011d0b
dbf104abb41f9bac535263e37a1574daa32071bf
faf6543d88da623c1549ec18c32065de5de07d676588500bd0c45e4a717feb04
GET /global/imag/ico-mac.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Mar 2021 08:15:46 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 604
content-type: image/svg+xml
cache-control: max-age=7289735
expires: Wed, 14 Jun 2023 07:17:55 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/main-m/robocop-13644-2.jpg
23.13.37.130200 OK 15 kB URL HTTP/2 imag.malavida.com/mvimg/main-m/robocop-13644-2.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 288x180, components 3\012- data
Hash d9111c8f9fad2585b49b903d26bc98c0
f38116b6d4ba8bdd32103b8097e051d02275a6d1
cbe54a6929b66435ca5402af08635d37c4c0bc3fefb772780b72e45e439d6a09
GET /mvimg/main-m/robocop-13644-2.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Tue, 08 Mar 2022 19:37:59 GMT
content-type: image/jpeg
content-length: 15385
cache-control: max-age=7400712
expires: Thu, 15 Jun 2023 14:07:32 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-windows.svg
23.13.37.130200 OK 396 B URL HTTP/2 static.malavida.com/global/imag/ico-windows.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (472)
Hash d475007fca7b832ed7dec6ba96f7d225
5fcc93c01f9d672c9671e99f9e8326be1ee082ec
17873174f6cf9b7ce57c6bc4ce8d6346379269f2d6f50eb6ea1cda4f3cab10e0
GET /global/imag/ico-windows.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Mon, 15 Mar 2021 08:15:46 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 396
content-type: image/svg+xml
cache-control: max-age=7289652
expires: Wed, 14 Jun 2023 07:16:32 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/grand-theft-auto-san-andreas-13517-0.jpg
23.13.37.130200 OK 801 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/grand-theft-auto-san-andreas-13517-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 8a08bae6c7cbb9084d1c1570e5f03a00
4a42408bc3a434829da14c3340e58de0234f1b96
7315fd0f4dfc03faaedcc5fb408720a9a7332d2a9e97868abc0aa4ae10b0fcd4
GET /mvimg/soft-xs/grand-theft-auto-san-andreas-13517-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:22:26 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 801
cache-control: max-age=3242393
expires: Fri, 28 Apr 2023 11:02:13 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-comment.svg
23.13.37.130200 OK 363 B URL HTTP/2 static.malavida.com/global/imag/ico-comment.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 7dcafb2c36817343a49e3f140ca0910f
25022485f023ff0b49537bf4d84270255e0fd156
b5b6e501781804aa4dcb2739f22a8f50c732cb3de68ddceb7cf9b69bed79dfa7
GET /global/imag/ico-comment.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 363
content-type: image/svg+xml
cache-control: max-age=7289692
expires: Wed, 14 Jun 2023 07:17:12 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/special-forces-group-2-20930-0.jpg
23.13.37.130200 OK 839 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/special-forces-group-2-20930-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 0b30e0d9f5cc5f6943cc12991564dd30
ac84975a63b97c1510f3a174652c6c015c228ff0
c380f0b7e41b45486e7075b05cc069d21b7aeeb2d966cb58719acd5315cdd342
GET /mvimg/soft-xs/special-forces-group-2-20930-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:50 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 839
cache-control: max-age=3737729
expires: Thu, 04 May 2023 04:37:49 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/standoff-2-21713-0.jpg
23.13.37.130200 OK 803 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/standoff-2-21713-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash e485691f391f4477f7d7908ceead4a36
5974bf87f9d2e18885c182962b9374b237f7991c
492d339b99a21b534286f5510897df7bcb5c1cb8b11ef970fa50abc10209e157
GET /mvimg/soft-xs/standoff-2-21713-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Sun, 04 Sep 2022 21:06:28 GMT
content-type: image/jpeg
content-length: 803
cache-control: max-age=4205492
expires: Tue, 09 May 2023 14:33:52 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/free-fire-battlegrounds-20497-0.jpg
23.13.37.130200 OK 814 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/free-fire-battlegrounds-20497-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 6e445c955c1b0ebc8ccb9a09d358648d
0b55e6cd68e9989e823c624b29bebd31fdb44869
256e589385dabf6c5991ccf83d716eb928ef36b30a4231012f0ec8989b018360
GET /mvimg/soft-xs/free-fire-battlegrounds-20497-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Mar 2022 14:10:47 GMT
server: Apache
accept-ranges: bytes
content-type: image/jpeg
content-length: 814
cache-control: max-age=3201470
expires: Thu, 27 Apr 2023 23:40:10 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
imag.malavida.com/mvimg/soft-xs/nextbots-in-backrooms-obunga-36336-0.jpg
23.13.37.130200 OK 819 B URL HTTP/2 imag.malavida.com/mvimg/soft-xs/nextbots-in-backrooms-obunga-36336-0.jpg
IP 23.13.37.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Hash 1bf96ac0281b1a5b6960654ad116c130
daeb3999bfad43f5215bf8bfcd749e31ee952db4
665c404c139b67c3303a9d9ad6c0c40e0cb33a8eff841ac61b64bc786234ee1f
GET /mvimg/soft-xs/nextbots-in-backrooms-obunga-36336-0.jpg HTTP/1.1
Host: imag.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
last-modified: Thu, 15 Dec 2022 13:31:52 GMT
content-type: image/jpeg
content-length: 819
cache-control: max-age=7634502
expires: Sun, 18 Jun 2023 07:04:02 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
sdk.privacy-center.org/63587a00-7436-4b96-9716-32fba5775251/loader.js?target=robocop.ru.malavida.com
54.230.111.7200 OK 9.8 kB URL HTTP/2 sdk.privacy-center.org/63587a00-7436-4b96-9716-32fba5775251/loader.js?target=robocop.ru.malavida.com
IP 54.230.111.7:0
File type Unicode text, UTF-8 text, with very long lines (36224), with no line terminators
Hash 819e87bff53f65f04aac334f47dd6465
563372cbb0c395ffc61384ce19a6dd92a27ef497
b770a9bfcc33871c32643f555e856cc0ecff87ae0dc154d3794cd15975b9f219
GET /63587a00-7436-4b96-9716-32fba5775251/loader.js?target=robocop.ru.malavida.com HTTP/1.1
Host: sdk.privacy-center.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 9844
server: CloudFront
date: Tue, 21 Mar 2023 22:22:20 GMT
x-didomi-remote-config-source: Lambda
content-encoding: gzip
cache-control: max-age=7200, public
etag: "d24a5977fc6f52b16636a63363764172"
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T3sk83ybxT2_jU2Si2SbC3rvHEYeijRnx9dhmv8W2M2GgbTWpENJaA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3e968c0f4319273e79821cbabf3bdbdc
99f1127052594878d49370fdcc61b1e4fbb69e61
82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3462d41d9283fedf24f278089d5d1570
b8bcea77656f775cdc34620322cc616216ed2b95
55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4868
Expires: Tue, 21 Mar 2023 23:43:28 GMT
Date: Tue, 21 Mar 2023 22:22:20 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?_=v2&id=GTM-MQ79NG
142.250.74.168200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?_=v2&id=GTM-MQ79NG
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (23195)
Hash 127379a4309752113fa1b611217ec70c
93f56da93bbfaf4c3389750e51ac3c450894bf86
7843f273825b6c928ece198f99bedf4936eef1bddd0af82e9ce999310e4f71ce
GET /gtm.js?_=v2&id=GTM-MQ79NG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 21 Mar 2023 22:22:20 GMT
expires: Tue, 21 Mar 2023 22:22:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 21 Mar 2023 21:26:44 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 57240
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 21 Mar 2023 22:14:33 GMT
age: 467
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3e968c0f4319273e79821cbabf3bdbdc
99f1127052594878d49370fdcc61b1e4fbb69e61
82ea5f81bec224fa88a6b83c50481d819586b5de2fbb435d522d24ce1250b6cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f86da0dd278dab61512989673262b7b7
0a9e07a3e3001b0fd895cd6be56f4b6929048e7b
ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39670)
Hash c33fcf146802c620cb6ec4efc95217be
dcb4cfb832d5c04bc15748e6e2038c543dcc24e6
c7e9b4f4870a378c0ee59eb6d0d83face8946f71faafdc6469b473f11720a963
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27136
date: Tue, 21 Mar 2023 22:22:20 GMT
expires: Tue, 21 Mar 2023 22:22:20 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1518 / 681 of 1000 / last-modified: 1679436494"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f86da0dd278dab61512989673262b7b7
0a9e07a3e3001b0fd895cd6be56f4b6929048e7b
ac48a2d4cff37e533bcead879c78d3a6f937e6c07fe2aa71a7d0aa4cc5181752
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.malavida.com/favicon.ico
23.13.37.130200 OK 1.9 kB URL HTTP/2 www.malavida.com/favicon.ico
IP 23.13.37.130:0
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash e27c9068e83738384c22f5c6cef4ee11
4ab28003d0c19c0361bbc23ffa8da7b9008848d3
d0fe6671e231a92f0edd24627cae630cb56fd3778f5d0a95f7c8f4e0da4260f5
GET /favicon.ico HTTP/1.1
Host: www.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
x-frame-options: SAMEORIGIN
last-modified: Thu, 17 Mar 2022 10:54:27 GMT
accept-ranges: bytes
content-encoding: br
content-security-policy: frame-ancestors 'self';
access-control-allow-credentials: true
content-length: 1926
content-type: image/x-icon
cache-control: max-age=15533028
expires: Sun, 17 Sep 2023 17:06:08 GMT
date: Tue, 21 Mar 2023 22:22:20 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
vary: Accept-Encoding
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.24.53.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.24.53.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TcZHwnjPxnJjXPsj3JJfsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MfHns9CuPJbQudPy3f76/Ts6mjY=
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 21 Mar 2023 21:53:25 GMT
expires: Tue, 21 Mar 2023 23:53:25 GMT
cache-control: public, max-age=7200
age: 1736
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ff476bde43022243f6c3f9dddd9360d3
7862bf4ba04f1218f10f85bbddbe2a11aeeeece6
6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ff476bde43022243f6c3f9dddd9360d3
7862bf4ba04f1218f10f85bbddbe2a11aeeeece6
6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-49&cid=1083659374.1679437345&jid=654603349&gjid=1894386408&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=74387607
209.85.233.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-49&cid=1083659374.1679437345&jid=654603349&gjid=1894386408&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=74387607
IP 209.85.233.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-49&cid=1083659374.1679437345&jid=654603349&gjid=1894386408&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=74387607 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://robocop.ru.malavida.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 21 Mar 2023 22:22:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-51&cid=1083659374.1679437345&jid=1302923844&gjid=1232162094&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=1583515114
209.85.233.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-51&cid=1083659374.1679437345&jid=1302923844&gjid=1232162094&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=1583515114
IP 209.85.233.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-62129-51&cid=1083659374.1679437345&jid=1302923844&gjid=1232162094&_gid=1665457432.1679437345&_u=YCDAgEABAAAAAEAAI~&z=1583515114 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://robocop.ru.malavida.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 21 Mar 2023 22:22:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 8a237b3ec23da41b2cdefc39b643691f
322b5b2a4fb99140ac53a94058d34a4806133519
4d88ec2ff0cf38948e56dabbd03130bb35850d89921fe80e242e762fedde2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9446303f24a6e8e8d138867549399aa2
410a03d7475ec879b8e346f1706aea491e3f1da5
f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=robocop.ru.malavida.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=robocop.ru.malavida.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=robocop.ru.malavida.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 21 Mar 2023 22:22:21 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=robocop.ru.malavida.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=robocop.ru.malavida.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=robocop.ru.malavida.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 21 Mar 2023 22:22:21 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ff476bde43022243f6c3f9dddd9360d3
7862bf4ba04f1218f10f85bbddbe2a11aeeeece6
6e8b017b6722c1f95b920e14876ef42e2a38556bbad3b9f4b1b1879634ced74a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 8a237b3ec23da41b2cdefc39b643691f
322b5b2a4fb99140ac53a94058d34a4806133519
4d88ec2ff0cf38948e56dabbd03130bb35850d89921fe80e242e762fedde2468
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9446303f24a6e8e8d138867549399aa2
410a03d7475ec879b8e346f1706aea491e3f1da5
f7d7017ca9dbdf1822739e9baa6f34868504e6ce0d827aeeef82517c5db72960
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
172.217.21.161200 OK 2.7 kB URL HTTP/2 fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Tue, 21 Mar 2023 22:22:21 GMT
expires: Wed, 20 Mar 2024 22:22:21 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.malavida.com/jsu_V35/js-mv_util-mv_usr-nsmvsite-mv_box-mv_css_async-mv_usr_txt_ru.js
23.13.37.130200 OK 9.7 kB URL HTTP/2 www.malavida.com/jsu_V35/js-mv_util-mv_usr-nsmvsite-mv_box-mv_css_async-mv_usr_txt_ru.js
IP 23.13.37.130:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (571), with CRLF, LF line terminators
Hash 2103fe97da76a24e3da9c2f8f651fe0a
9e00f7e21691ab5ea4c8e4aee93264bfe5b8058a
47437380b56a914eda21e92e2cc1b7f56f59818ef7b53f541478f65af3fcc7b8
GET /jsu_V35/js-mv_util-mv_usr-nsmvsite-mv_box-mv_css_async-mv_usr_txt_ru.js HTTP/1.1
Host: www.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
x-frame-options: SAMEORIGIN
last-modified: Thu, 16 Mar 2023 07:20:31 GMT
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
access-control-allow-credentials: true
content-length: 9732
content-type: application/javascript; charset=UTF-8
cache-control: max-age=15532993
expires: Sun, 17 Sep 2023 17:05:34 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.malavida.com/global/css_V124/profile-app.css
23.13.37.130200 OK 23 kB URL HTTP/2 static.malavida.com/global/css_V124/profile-app.css
IP 23.13.37.130:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash dff5bde507571df16da27e83e56c95eb
61623f2641040ae927681f0b3714b5a62c7dc363
3d4f31576b8a25cf71f8b7bb7936d313025966af7dae3450db8086853f650d54
GET /global/css_V124/profile-app.css HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 16 Mar 2023 07:11:53 GMT
accept-ranges: bytes
content-encoding: br
content-length: 23093
content-type: text/css
cache-control: max-age=15065679
expires: Tue, 12 Sep 2023 07:17:00 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023031601&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023031601&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (15025), with no line terminators
Hash 430b5c9c8d443e9ae90eeb9f9efc98c6
dd6c6a15c12eb63d9b1626c24d4defc2bd41a339
e602729f8395da0de344121dfcaa11f768c39fcdef8372a724a7c1a3dd7d263c
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023031601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 21 Mar 2023 22:22:21 GMT
server: cafe
content-length: 11339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-caracteristicas.svg
23.13.37.130200 OK 239 B URL HTTP/2 static.malavida.com/global/imag/ico-caracteristicas.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b36b605e1fe0dde40a6c9701b6441685
082c101b18e239c173d2cfceb5043357774bf7f8
7114ff11d7bf93a76d29e29e1991becff257652ebe1975e3081902f24fca805d
GET /global/imag/ico-caracteristicas.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 10 Oct 2022 06:13:38 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 239
content-type: image/svg+xml
cache-control: max-age=7289700
expires: Wed, 14 Jun 2023 07:17:21 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/ru.png
23.13.37.130200 OK 1.1 kB URL HTTP/2 static.malavida.com/global/imag/flags/ru.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash ace870887aebe49c74d5872cdd7164ec
018b85058b0b504f70de4dfcfbd60552e7c6eb3b
c92b84a5da05049b48f9b31248b5fb428589d340a9a1fd09c994324bacb64e8e
GET /global/imag/flags/ru.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1097
content-type: image/png
cache-control: max-age=7289695
expires: Wed, 14 Jun 2023 07:17:16 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/es.png
23.13.37.130200 OK 1.2 kB URL HTTP/2 static.malavida.com/global/imag/flags/es.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash a4da4ee27c38e38123f99a43dfc1567a
9f840ccdb6abc940f27f6077abe36b8be43cb8ff
3949935c038b8bd0f86cb54461c44c1b13bc840cba1770fd663fd37fd3298b94
GET /global/imag/flags/es.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1239
content-type: image/png
cache-control: max-age=7289788
expires: Wed, 14 Jun 2023 07:18:49 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/en.png
23.13.37.130200 OK 1.2 kB URL HTTP/2 static.malavida.com/global/imag/flags/en.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cd28ad83b617da364cdef4b17e0df7d
907faec22e5411b76d910a4118781da5229fe980
c4e9be1d0ee744cd18a0ac440cbc385ecad4ff27a60f2a7ca3160de280264ca2
GET /global/imag/flags/en.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1235
content-type: image/png
cache-control: max-age=7289665
expires: Wed, 14 Jun 2023 07:16:46 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/de.png
23.13.37.130200 OK 1.1 kB URL HTTP/2 static.malavida.com/global/imag/flags/de.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash de38258913e0205a0bf911538ca674d7
b1ed678b5cd08f56beafcc019953be5f316755ce
3f2bbad96cc72e8481aaeffab83d88a169f74023e8b86340888e1959261a9bf3
GET /global/imag/flags/de.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1131
content-type: image/png
cache-control: max-age=7289753
expires: Wed, 14 Jun 2023 07:18:14 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/fr.png
23.13.37.130200 OK 1.2 kB URL HTTP/2 static.malavida.com/global/imag/flags/fr.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 83bc44da58f81e2a3e1f638d53d09e7f
36c4d1cce151b8865a3d59a28c8f1ee5fe4f2b75
44ed96f6dbe27d5722a25600fedee3ee0dd2203faf27f6ebb6152fd2212584d1
GET /global/imag/flags/fr.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1200
content-type: image/png
cache-control: max-age=7289746
expires: Wed, 14 Jun 2023 07:18:07 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/pt.png
23.13.37.130200 OK 1.4 kB URL HTTP/2 static.malavida.com/global/imag/flags/pt.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash aa7132a8c2774ab7200957977a2682a8
9c0d88f794b29810b75f1935aa03fbdc61f4fd06
85823cba4758cfa73c31b34b0ce554e098faea58cd04198fe5603aabb35fca60
GET /global/imag/flags/pt.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1440
content-type: image/png
cache-control: max-age=7289714
expires: Wed, 14 Jun 2023 07:17:35 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/it.png
23.13.37.130200 OK 1.2 kB URL HTTP/2 static.malavida.com/global/imag/flags/it.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 00e1798db49ad1a1ffa5f8f6807199df
3e4511479f576ea3f12af10eaf745436d04eb436
30c9cbedbadcbf5e0730c35bb27c6bcddcb47757f94bc6872c8d043da4c6fe10
GET /global/imag/flags/it.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1174
content-type: image/png
cache-control: max-age=7289715
expires: Wed, 14 Jun 2023 07:17:36 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-compartir.svg
23.13.37.130200 OK 325 B URL HTTP/2 static.malavida.com/global/imag/ico-compartir.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (502)
Hash 0f4b68e18b8018d55a7cdcdc58c47778
3feba101ef7f5224a3ca73e90d9ba375df7c65bb
fd67cc03a6c7d223677240bb941e94dee7f6db4add8c7aa1d4c9d4da5e1519c9
GET /global/imag/ico-compartir.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 10 Oct 2022 06:13:38 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 325
content-type: image/svg+xml
cache-control: max-age=7289696
expires: Wed, 14 Jun 2023 07:17:17 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-facebook.svg
23.13.37.130200 OK 329 B URL HTTP/2 static.malavida.com/global/imag/ico-facebook.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 5b5f28e952e64ac1289ce36d158f39e8
e7c1efe9eb615b0acde0b3ebffd475a748b79ef1
0bc718e0e7df5347e67f7a95ed5b3ccd0ef2784f8c9a44f22f98fe78b93458fb
GET /global/imag/ico-facebook.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 329
content-type: image/svg+xml
cache-control: max-age=7289722
expires: Wed, 14 Jun 2023 07:17:43 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/flags/jp.png
23.13.37.130200 OK 1.2 kB URL HTTP/2 static.malavida.com/global/imag/flags/jp.png
IP 23.13.37.130:0
File type PNG image data, 16 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash e24810def9dc0d9bf2d0bffdb4c1afd9
8d91185fe42d703c8550633e87faa34ae348e180
010a80a91f952f506cdc499728a16703e40ee767968aebb74b03934716375c73
GET /global/imag/flags/jp.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-length: 1184
content-type: image/png
cache-control: max-age=7289615
expires: Wed, 14 Jun 2023 07:15:56 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-twitter.svg
23.13.37.130200 OK 539 B URL HTTP/2 static.malavida.com/global/imag/ico-twitter.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (885)
Hash 2b0569f3db5de4f708143df6480dd451
4e67a49bb721ba5e401c07fe7303ce31f25cba92
e306a5f32224e6416306ab54d27e52c8afb88be672f33fd74355d14f8789371c
GET /global/imag/ico-twitter.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 539
content-type: image/svg+xml
cache-control: max-age=7289696
expires: Wed, 14 Jun 2023 07:17:17 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-updated.svg
23.13.37.130200 OK 2.9 kB URL HTTP/2 static.malavida.com/global/imag/ico-updated.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 045eecf8b69c21eb8522a535d3501d88
2844f2abb4c04474bf1a68d2f0d933c52807ebf4
866052d892940cefb5da0bf28fd1d8ae84120263b66322962c5f215f989bd8e3
GET /global/imag/ico-updated.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-length: 2918
content-type: image/svg+xml
cache-control: max-age=7289695
expires: Wed, 14 Jun 2023 07:17:16 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-attachment.svg
23.13.37.130200 OK 1.9 kB URL HTTP/2 static.malavida.com/global/imag/ico-attachment.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 68c646edb51bfe3b46ceb5ce719e0dc9
375e0da9386353e77f8d67252daa501e6cefb387
c240b08ee2a9875b81c05e8b6aa161a54ed4c60c71ed50439dbfc0709cf869db
GET /global/imag/ico-attachment.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1891
content-type: image/svg+xml
cache-control: max-age=7289686
expires: Wed, 14 Jun 2023 07:17:07 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-info.svg
23.13.37.130200 OK 1.9 kB URL HTTP/2 static.malavida.com/global/imag/ico-info.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash fe0787119817ca8b3b402f7e565c6d61
9720ad8108bee8e425fdc8e346ff07805e5360c2
a88838a646aee70e38873d0d3ae63655b25898a46b9275ab141bca6bc16b730b
GET /global/imag/ico-info.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 1891
content-type: image/svg+xml
cache-control: max-age=7289723
expires: Wed, 14 Jun 2023 07:17:44 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-twitter2.svg
23.13.37.130200 OK 798 B URL HTTP/2 static.malavida.com/global/imag/ico-twitter2.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1020)
Hash d5b1c28ffab5c51139a4b9442c2d31e6
9dd5d9904593995ed1c23018f72fc8fedfc29af8
e624c302ebc2b7d3987ba13cedef6d7625ee743bfa5f56822748213fdf7001cd
GET /global/imag/ico-twitter2.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 798
content-type: image/svg+xml
cache-control: max-age=7289697
expires: Wed, 14 Jun 2023 07:17:18 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-facebook2.svg
23.13.37.130200 OK 483 B URL HTTP/2 static.malavida.com/global/imag/ico-facebook2.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (417)
Hash aa4f0065be9437cd28ee8c3b63b55793
496020d9b30d86e831572dbfe85687e517e8bd22
a2be8594f6dd5cab1ccfec64dd917b377d673df55d579b97e3493f8430c22365
GET /global/imag/ico-facebook2.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 483
content-type: image/svg+xml
cache-control: max-age=7289697
expires: Wed, 14 Jun 2023 07:17:18 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/css/img/firmlogo.png
23.13.37.130200 OK 933 B URL HTTP/2 static.malavida.com/global/css/img/firmlogo.png
IP 23.13.37.130:0
File type PNG image data, 110 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 388224e03f901d300a281573b2c0e02c
bd97e283b257c22367453c4ad396b952646fb967
f7eb2e945f83424dfa06ebf3e81f5f7280be4747035b9d6cb2904db7924bca62
GET /global/css/img/firmlogo.png HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Cookie: didomi_token=eyJ1c2VyX2lkIjoiMTg3MDY0NDItZmU5Yy02ZDY3LWFlNzItODY0MzU2NGE3YmJlIiwiY3JlYXRlZCI6IjIwMjMtMDMtMjFUMjI6MjI6MjQuODAxWiIsInVwZGF0ZWQiOiIyMDIzLTAzLTIxVDIyOjIyOjI0LjgwMVoiLCJ2ZXJzaW9uIjpudWxsfQ==; cookie-consent-v1=no-eu; _ga_96K7KT3ZPX=GS1.1.1679437345.1.0.1679437345.0.0.0; _ga=GA1.2.1083659374.1679437345; _ga_DHF0S7H5E7=GS1.1.1679437345.1.0.1679437345.0.0.0; _gid=GA1.2.1665457432.1679437345; _dc_gtm_UA-62129-51=1; _dc_gtm_UA-62129-49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 10 Mar 2020 08:22:29 GMT
accept-ranges: bytes
content-length: 933
content-type: image/png
cache-control: max-age=7289657
expires: Wed, 14 Jun 2023 07:16:38 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-youtube.svg
23.13.37.130200 OK 331 B URL HTTP/2 static.malavida.com/global/imag/ico-youtube.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 3b8a90e4e686c9b79d314ac801e17f02
d2bb0bf958fad53506391a69b9d79a17fd2c77eb
dcc795276a74af3c12e130dd57fb53720b16a191f3feea78bf8f4b16b96e8950
GET /global/imag/ico-youtube.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 331
content-type: image/svg+xml
cache-control: max-age=7289697
expires: Wed, 14 Jun 2023 07:17:18 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
static.malavida.com/global/imag/ico-feed.svg
23.13.37.130200 OK 459 B URL HTTP/2 static.malavida.com/global/imag/ico-feed.svg
IP 23.13.37.130:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash e43482f2d9f26cef20636c3118386bc7
c8bb8ad7e4a17ab4ebf32bd6bdf699d1e484d840
5daedc51e0093bc7a049f606de8ade4b20a561e67530adba70580425167adf6d
GET /global/imag/ico-feed.svg HTTP/1.1
Host: static.malavida.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.malavida.com/global/css_V124/profile-app.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Mon, 19 Apr 2021 07:15:39 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-length: 459
content-type: image/svg+xml
cache-control: max-age=7289745
expires: Wed, 14 Jun 2023 07:18:06 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
vary: Accept-Encoding
strict-transport-security: max-age=86400 ; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c33c89e76415c5940d5d1971f1e2198e
178db9b151d4dee35b27710ceb1f3cc7827f7753
0e5ca2a08544e0947afca36bd46d3b60bc2b9489088e26832ec8612f1abaa667
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.225200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.225:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 21 Mar 2023 22:22:21 GMT
expires: Tue, 21 Mar 2023 22:22:21 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-96K7KT3ZPX>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-96K7KT3ZPX>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-96K7KT3ZPX>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://robocop.ru.malavida.com
date: Tue, 21 Mar 2023 22:22:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.207.225200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.207.225:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Mar 2023 13:51:55 GMT
expires: Sat, 16 Mar 2024 13:51:55 GMT
cache-control: public, max-age=31536000
age: 376226
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-DHF0S7H5E7>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-DHF0S7H5E7>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-DHF0S7H5E7>m=45je33k0&_p=1242048015&cid=1083659374.1679437345&ul=en-us&sr=1280x1024&_s=1&sid=1679437345&sct=1&seg=0&dl=https%3A%2F%2Frobocop.ru.malavida.com%2Fandroid%2F&dt=RoboCop%203.0.6%20-%20%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B4%D0%BB%D1%8F%20Android%20APK%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robocop.ru.malavida.com
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://robocop.ru.malavida.com
date: Tue, 21 Mar 2023 22:22:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d8076782b7586aea6d69480d5434652e
6bd6f10f27f62711c6783bc8b5ea72cb74622e2f
ab660e165b0044aa0ca16ab2a42ac38a1922a24a6ae6e879d4e3e1e9c19822c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash d4e0168b4670f81d5f8db9ebbe196023
b82653c376a674c5784aef3701ca15f4dde8f65d
674d420d9c82fdc6176a85336d2aa53d5204fca30b2a60dca4b36418d8b21e95
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 21 Mar 2023 22:22:21 GMT
date: Tue, 21 Mar 2023 22:22:21 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-n_lmRVP9aJrymEhYkP8gOA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.doubleverify.com/dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
23.33.119.16200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8016)
Hash e072d49341cffb322fdd359541b9e969
de1b7189b03b1aea898af405c0211a80cd25ec95
bd955388ecf026cba6c91f799b23a110cf0b3bc0cebe97ee5ed188c8f92558a2
GET /dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID= HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 12:11:05 GMT
Accept-Ranges: bytes
ETag: "8012f935ee5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3337
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
cdn.doubleverify.com/dvbs_src.js?ctx=1828362&cmp=115750&plc=5182811&sid=18330&dvregion=0&unit=728x90&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
23.33.119.16200 OK 1.2 kB URL HTTP/1.1 cdn.doubleverify.com/dvbs_src.js?ctx=1828362&cmp=115750&plc=5182811&sid=18330&dvregion=0&unit=728x90&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document, ASCII text, with very long lines (536)
Hash 9b0ef0e5b912683035f3ec3dc7a6ba88
ac08726b04e33d671ac1f77cba8462992ff4b932
1a57cc629965b4fd2cb6e1f764fc5fda00b2ed9cdf9c653bdb03fc49e9ce273f
GET /dvbs_src.js?ctx=1828362&cmp=115750&plc=5182811&sid=18330&dvregion=0&unit=728x90&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID= HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 10 Jan 2023 10:59:51 GMT
Accept-Ranges: bytes
ETag: "2d4a10aae224d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Timing-Allow-Origin: *
Content-Length: 1170
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
cdn.doubleverify.com/dvbs_src_internal117.js
23.33.119.16200 OK 19 kB URL HTTP/1.1 cdn.doubleverify.com/dvbs_src_internal117.js
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2636), with CRLF, LF line terminators
Hash cf93b15de9d1c76c1bc6fdaee5382496
26e52f0a242bff375cc54d8d33a1a416d89e2813
c290ae68279e0685c13650d1534a0cd86997420399bb67288046e61b13defb53
GET /dvbs_src_internal117.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 10 Jan 2023 11:00:18 GMT
Accept-Ranges: bytes
ETag: "0cda5b9e224d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 18840
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
cdn.doubleverify.com/dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
23.33.119.16200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8016)
Hash e072d49341cffb322fdd359541b9e969
de1b7189b03b1aea898af405c0211a80cd25ec95
bd955388ecf026cba6c91f799b23a110cf0b3bc0cebe97ee5ed188c8f92558a2
GET /dvtp_src.js?ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&advid=3398311&adsrv=0&btreg=&btadsrv=&tagtype=&dvtagver=6.1.src&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID= HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 12:11:05 GMT
Accept-Ranges: bytes
ETag: "8012f935ee5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3337
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
cdn.doubleverify.com/dvbs_src.js?ctx=1828362&cmp=115750&plc=5182864&sid=18330&dvregion=0&unit=300x250&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
23.33.119.16200 OK 1.2 kB URL HTTP/1.1 cdn.doubleverify.com/dvbs_src.js?ctx=1828362&cmp=115750&plc=5182864&sid=18330&dvregion=0&unit=300x250&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID=
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document, ASCII text, with very long lines (536)
Hash 9b0ef0e5b912683035f3ec3dc7a6ba88
ac08726b04e33d671ac1f77cba8462992ff4b932
1a57cc629965b4fd2cb6e1f764fc5fda00b2ed9cdf9c653bdb03fc49e9ce273f
GET /dvbs_src.js?ctx=1828362&cmp=115750&plc=5182864&sid=18330&dvregion=0&unit=300x250&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&prr=1&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&turl=https://robocop.ru.malavida.com/android/&DVP_PP_BUNDLE_ID= HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 10 Jan 2023 10:59:51 GMT
Accept-Ranges: bytes
ETag: "2d4a10aae224d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Timing-Allow-Origin: *
Content-Length: 1170
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12117
Expires: Wed, 22 Mar 2023 01:44:19 GMT
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12117
Expires: Wed, 22 Mar 2023 01:44:19 GMT
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12117
Expires: Wed, 22 Mar 2023 01:44:19 GMT
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e5f234aedfabd736b50fef3017380f9
71672a6c3523d9999522e005091863d07ea0e94a
3314df7a93e317d509aeffc1cde69ec450ddad116a27dc197db1abce966da344
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2ad5022-7f23-468e-8e1f-6388d8cc9db8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 82d12180-bdcb-4ce0-8588-4239ee27f236
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI_E_eoAMF3sA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-2f5df7cd5f6cee4762703d29;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: sTt0-W1XE7yUFGFXg2nPnKw5tKKkrw-cH_TCIbQy8JL-k0QtCNZS8w==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 22:08:42 GMT
age: 820
etag: "71672a6c3523d9999522e005091863d07ea0e94a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12117
Expires: Wed, 22 Mar 2023 01:44:19 GMT
Date: Tue, 21 Mar 2023 22:22:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a940b362660fdee25faaa51e08c439b
85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c
18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFESEDGoAMFQ8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: WZ5MqPZ-MEjDt3N53EIx1XrerDmUkyvK-5FUXAmI29GXlGe6AaPqEg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:23:21 GMT
age: 86341
etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e538277f72ecedd22d24c1012250fa9e
4bd955ea3790a6926486e3d56f51c712c56997d7
5f4d374598cfb1a78e7016ec3a0b563e61e7481be202c34b10c9fdfbfc7b638e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 3aaca817-ebbc-449f-806c-d5a2a7559335
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFEmFIAMFqhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-435381723c24efc66eed6b4b;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: ucKJdzsuQMhDuZHuaBcW8q8tDkm1tepcMkqRtTRUuzF-7CIuhAR2MQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:27:44 GMT
age: 86078
etag: "4bd955ea3790a6926486e3d56f51c712c56997d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59a97c7842690d7acd0ff07d949b1ef3
8719d7d6866855fdfba87e06128fb1969d857732
203b0e030b9bf84a8a2731c1b46d57e60ee50a53cc925845e7b20cbd60362136
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5456
x-amzn-requestid: 545d20a4-ed22-4be4-98aa-23383209dae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDUKFC9IAMF4pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f4d-3e927ea45de99d4b286fcfc8;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:31:57 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qXn3EwgagFD2MH4PzDYxxVd1eXOQQxHDkNdxXGxwuS-tmPNxWXYukA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 18:00:25 GMT
age: 15717
etag: "8719d7d6866855fdfba87e06128fb1969d857732"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f73dbc0fc3d196647ddc1e30450989d4
75d0a1414a5d350ba426dc37333a6ea131f66753
2a6954b3ccf01567c0c0c2911dd8b02c1cd264fc78178cef2eef6a6796c16c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6943b819-ab3e-4698-a81d-266be026b4b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10855
x-amzn-requestid: bb845712-834d-49b1-97f0-f3750f132741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEZD0GCHIAMFq6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418087e-4361bbd40ec5f0d10dabdf85;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:18 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: gnFLBOJmRcgsHzy_KXjzE6LwwN4CSqz99pIhYMBx8xrHa8UO6O0kJA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 07:30:21 GMT
age: 53521
etag: "75d0a1414a5d350ba426dc37333a6ea131f66753"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 302595cc68fe8cf12121d0f652b3194d
e5532a3fed552246e8a63ea2ba75e174273a7b9f
6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7695
x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDETIHf8oAMFxEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 388_JExXl_vwNTUh_69QfjoGz-cNeQwwrp6kpAP1Hhv3VvtgeeXbrw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Tue, 21 Mar 2023 21:55:32 GMT
age: 1610
etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 968a6892ca67f7a69f2eed3c64c591b8
61a8c47fb1f97a9e33b15705899f9fb0cdfd010e
e727654f0d757e2c9a068cb58264c41eb3684eec70a0da28fc8c68472af76165
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 19:47:35 GMT
Expires: Wed, 22 Mar 2023 19:47:35 GMT
ETag: "61a8c47fb1f97a9e33b15705899f9fb0cdfd010e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.starfieldtech.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 968a6892ca67f7a69f2eed3c64c591b8
61a8c47fb1f97a9e33b15705899f9fb0cdfd010e
e727654f0d757e2c9a068cb58264c41eb3684eec70a0da28fc8c68472af76165
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 19:47:35 GMT
Expires: Wed, 22 Mar 2023 19:47:35 GMT
ETag: "61a8c47fb1f97a9e33b15705899f9fb0cdfd010e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_283679892155&jsTagObjCallback=__tagObject_callback_283679892155&num=6&ctx=1828362&cmp=115750&plc=5182864&sid=18330&advid=&adsrv=&unit=300x250&isdvvid=&uid=283679892155&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=0.00&dvpx_strhd=0.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=6&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=6.00&callbackName=__verify_callback_283679892155
34.149.12.213200 OK 268 B URL HTTP/1.1 rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_283679892155&jsTagObjCallback=__tagObject_callback_283679892155&num=6&ctx=1828362&cmp=115750&plc=5182864&sid=18330&advid=&adsrv=&unit=300x250&isdvvid=&uid=283679892155&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=0.00&dvpx_strhd=0.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=6&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=6.00&callbackName=__verify_callback_283679892155
IP 34.149.12.213:0
Hash 3e492802d989cd38cde3807eb86fa8d3
ba302e99c93811937c710643365ec0744d885a13
21b42ff292625c29e31631b4a6f6d55bf339f7c0208fd93d4ced8688db256e86
GET /verify.js?flvr=0&jsCallback=__verify_callback_283679892155&jsTagObjCallback=__tagObject_callback_283679892155&num=6&ctx=1828362&cmp=115750&plc=5182864&sid=18330&advid=&adsrv=&unit=300x250&isdvvid=&uid=283679892155&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=0.00&dvpx_strhd=0.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=6&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=6.00&callbackName=__verify_callback_283679892155 HTTP/1.1
Host: rtb0.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:22 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/20/2023 22:22:22
Pragma: no-cache
Vary: Accept-Encoding
X-DV-Response: 0
rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_835424310010&jsTagObjCallback=__tagObject_callback_835424310010&num=6&ctx=1828362&cmp=115750&plc=5182811&sid=18330&advid=&adsrv=&unit=728x90&isdvvid=&uid=835424310010&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=1.00&dvpx_strhd=1.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=5&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=12.00&callbackName=__verify_callback_835424310010
34.149.12.213200 OK 265 B URL HTTP/1.1 rtb0.doubleverify.com/verify.js?flvr=0&jsCallback=__verify_callback_835424310010&jsTagObjCallback=__tagObject_callback_835424310010&num=6&ctx=1828362&cmp=115750&plc=5182811&sid=18330&advid=&adsrv=&unit=728x90&isdvvid=&uid=835424310010&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=1.00&dvpx_strhd=1.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=5&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=12.00&callbackName=__verify_callback_835424310010
IP 34.149.12.213:0
Hash c6178dcd84ab223e6ae5decef2bc56ee
e714cc72f4a0b23b7b3a78e71f66ee499b5bf6ef
040a194f64845ea1f21db7a578c4af2b91ff0c719b28c24fae42dc5003e5a69e
GET /verify.js?flvr=0&jsCallback=__verify_callback_835424310010&jsTagObjCallback=__tagObject_callback_835424310010&num=6&ctx=1828362&cmp=115750&plc=5182811&sid=18330&advid=&adsrv=&unit=728x90&isdvvid=&uid=835424310010&tagtype=&adID=&app=&sup=&isovv=0&gmnpo=&crt=&nav_pltfrm=Linux%20x86_64&dvp_strhd=1.00&dvpx_strhd=1.00&brid=0&brver=&bridua=2&dup=null&turl=https://robocop.ru.malavida.com/android/&srcurlD=0&ssl=1&refD=1&htmlmsging=1&tstype=128&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVP_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&DVP_PP_BUNDLE_ID=&prr=1&aUrlD=-1&m1=13&noc=16&fcifrms=5&brh=1&vavbkt=&lvvn=28&dvp_idcerr=undefined&ver=165&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&dvp_exetime=12.00&callbackName=__verify_callback_835424310010 HTTP/1.1
Host: rtb0.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:22 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/20/2023 22:22:22
Pragma: no-cache
Vary: Accept-Encoding
X-DV-Response: 0
cdn.doubleverify.com/dv-measurements3590.js
23.33.119.16200 OK 109 kB URL HTTP/1.1 cdn.doubleverify.com/dv-measurements3590.js
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 109 kB (108664 bytes)
Hash 1641a9065f775579eb36e560f8aece4e
1177a3cde5acfc8733c283dc7cb0799f94980b76
6448dbc00141d6bd237f6081e7eab33bfa16a4be59140d3adedd379984e7d1e0
GET /dv-measurements3590.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 10:20:26 GMT
Accept-Ranges: bytes
ETag: "011d2c0de5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 108664
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
servedby.flashtalking.com/imp/8/115750;5182864;201;jsappend;DV360;DV360FY20AcrobatCTXInMarketHighReachNODSKBAN300x250/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=644498.5766740803&ft_dv=%5B%25ft_dv%25%5D
104.88.10.141200 OK 790 B URL HTTP/1.1 servedby.flashtalking.com/imp/8/115750;5182864;201;jsappend;DV360;DV360FY20AcrobatCTXInMarketHighReachNODSKBAN300x250/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=644498.5766740803&ft_dv=%5B%25ft_dv%25%5D
IP 104.88.10.141:0
File type ASCII text, with CRLF, CR, LF line terminators
Hash 3dbd6bb89a3b25d0d405d218754ebd55
c2bb3134d1be2b342315e776eb2c19892d9991e5
e731409c9f0d614e9d90538190e1e6728243f2d0af6eb7165b4c92915a86a9ad
GET /imp/8/115750;5182864;201;jsappend;DV360;DV360FY20AcrobatCTXInMarketHighReachNODSKBAN300x250/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=644498.5766740803&ft_dv=%5B%25ft_dv%25%5D HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=ISO-8859-1
Server: prod-xre-app4.frk11
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Tue, 21 Mar 2023 22:22:23 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Length: 790
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=55588896343765";Comment="Flashtalking Cookie";Path=/;Domain=flashtalking.com;Expires=Thu, 20-Mar-2025 22:22:23 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
servedby.flashtalking.com/imp/8/115750;5182811;201;jsappend;DV360;DV360FY20AcrobatCTXCustomAffinityBlendedNODSKBAN728x90/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=418662.9486416065&ft_dv=%5B%25ft_dv%25%5D
104.88.10.141200 OK 787 B URL HTTP/1.1 servedby.flashtalking.com/imp/8/115750;5182811;201;jsappend;DV360;DV360FY20AcrobatCTXCustomAffinityBlendedNODSKBAN728x90/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=418662.9486416065&ft_dv=%5B%25ft_dv%25%5D
IP 104.88.10.141:0
File type ASCII text, with CRLF, CR, LF line terminators
Hash 27f5b4f7c5c7469e276a52deced64b46
b897b4ec39eca618eb96d7a3ba6a850ff6db14aa
f546a8090ef83fbcc7129b0ac2d33eff6f2bce18370835aa173f657d44657c5d
GET /imp/8/115750;5182811;201;jsappend;DV360;DV360FY20AcrobatCTXCustomAffinityBlendedNODSKBAN728x90/?ftOBA=1&ft_domain=robocop.ru.malavida.com&ft_ifb=1&ft_agentEnv=0&ft_referrer=https%3A%2F%2Frobocop.ru.malavida.com%2F&gdpr=0&us_privacy=${US_PRIVACY}&cachebuster=418662.9486416065&ft_dv=%5B%25ft_dv%25%5D HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=ISO-8859-1
Server: prod-xre-app1.frk11
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Tue, 21 Mar 2023 22:22:23 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Length: 787
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=55586622636C48";Comment="Flashtalking Cookie";Path=/;Domain=flashtalking.com;Expires=Thu, 20-Mar-2025 22:22:23 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
cdn.flashtalking.com/xre/518/5182864/4069569/js/j-5182864-4069569.js
205.185.216.42200 OK 17 kB URL HTTP/1.1 cdn.flashtalking.com/xre/518/5182864/4069569/js/j-5182864-4069569.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (2897), with CRLF, CR, LF line terminators
Hash facb7c6dae68d25e318afe719604939f
be1adcc038868a76989e54bbf666dcee912ce11a
6c247bbbd02db09d8bd8004f382241cb94a051cc921368cf28aca943379d9860
GET /xre/518/5182864/4069569/js/j-5182864-4069569.js HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: Keep-Alive
ETag: "1664997972"
Cache-Control: max-age=937
Content-Encoding: gzip
Content-Length: 17006
Content-Type: text/javascript; charset=utf-8
Last-Modified: Wed, 05 Oct 2022 19:26:12 GMT
Accept-Ranges: bytes
x-amz-id-2: rxlP+iXJCtntqDI/94NqjTojkhMSy4pEOIYkWJ2cR1taioXSNMr1Lp+Q5p/Q4bn/p1IPZm1TIgg=
x-amz-request-id: 0DJ38ARQ62C0NJCE
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437343.dop211.sk1.t,1679437343.cds235.sk1.c
cdn.flashtalking.com/xre/518/5182811/3801681/js/j-5182811-3801681.js
205.185.216.42200 OK 15 kB URL HTTP/1.1 cdn.flashtalking.com/xre/518/5182811/3801681/js/j-5182811-3801681.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (2897), with CRLF, CR, LF line terminators
Hash 901730c851c43273bdaff9c7da544944
7a9d2851552abf68c7df8f11188de9a7e0841df6
d644976eb1b66bd6868fb64197663cf6109f075bbbb51b3f6c4413ab1ad2728d
GET /xre/518/5182811/3801681/js/j-5182811-3801681.js HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: Keep-Alive
ETag: "1664967501"
Cache-Control: max-age=601
Content-Encoding: gzip
Content-Length: 15216
Content-Type: text/javascript; charset=utf-8
Last-Modified: Wed, 05 Oct 2022 10:58:21 GMT
Accept-Ranges: bytes
x-amz-id-2: wc2NfoHoLww0J0eHSTPfqTNltLgGMXMerm8Una7g74A2Mmxjg8WrN4u62qek9lIMSUsFlUGuE88=
x-amz-request-id: VQVJ5V7Q3B7H0W8C
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop227.sk1.t,1679437343.cds021.sk1.shn,1679437343.dop227.sk1.t,1679437343.cds245.sk1.c
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash de62ed6f0201e2be1850d6848dc1736d
883752a7c0283d281713b25f83abe369e4ebaac7
c4ca37f6c532fe19b5c6e4688a5a874d53897299fd60afcfc052af183cd704ed
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 21:40:30 GMT
Expires: Wed, 22 Mar 2023 21:40:30 GMT
ETag: "883752a7c0283d281713b25f83abe369e4ebaac7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash de62ed6f0201e2be1850d6848dc1736d
883752a7c0283d281713b25f83abe369e4ebaac7
c4ca37f6c532fe19b5c6e4688a5a874d53897299fd60afcfc052af183cd704ed
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 21:40:30 GMT
Expires: Wed, 22 Mar 2023 21:40:30 GMT
ETag: "883752a7c0283d281713b25f83abe369e4ebaac7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.flashtalking.com/116327/4069569/index.html
205.185.216.42200 OK 24 kB URL HTTP/1.1 cdn.flashtalking.com/116327/4069569/index.html
IP 205.185.216.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1430), with CRLF, LF line terminators
Hash bc4b232e28f7d1f03cdca73990023dde
b9433019f112cdfc55be8305c9b2cd60c19c1c1e
ed8a13b5b259975a96d542bf9b241ea615655b020b3ca01358b8bcd60af713fd
GET /116327/4069569/index.html HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: Keep-Alive
ETag: "1664411218"
Cache-Control: max-age=973
Content-Encoding: gzip
Content-Length: 23511
Content-Type: text/html
Last-Modified: Thu, 29 Sep 2022 00:26:58 GMT
Accept-Ranges: bytes
x-amz-id-2: SLEASNezeITxYdwifZin5GEK7CYMNP2bLvmbxhtaAmLWy27I+MqnvkgJdfUSWeuKiFl9EBqBZhs=
x-amz-request-id: 599XQ1T6C6JF7DS9
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437343.dop211.sk1.t,1679437343.cds223.sk1.c
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=179&ttfrms=35&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347171102&jsCallback=dvCallback_1679437347171879&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=155309299915.2661&dvp_tukv=744973882.7096739&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1314671779427&jurtd=1244421941
34.149.12.213200 OK 681 B URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=179&ttfrms=35&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347171102&jsCallback=dvCallback_1679437347171879&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=155309299915.2661&dvp_tukv=744973882.7096739&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1314671779427&jurtd=1244421941
IP 34.149.12.213:0
File type ASCII text, with very long lines (1184), with no line terminators
Hash 8a59c905b93e017ebcda92c9770ae6dd
98894fb2c88386c7546cf8dd06f370e115f3792d
f7b8a83cf547d6c7ade8a40cac8ac0a515d6076d12f65518511f4b93a0f7e286
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=179&ttfrms=35&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347171102&jsCallback=dvCallback_1679437347171879&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0gZv-mjuHgporJ4PhUsSoe1&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170598693&DVP_DBM_4=396522456&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=155309299915.2661&dvp_tukv=744973882.7096739&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1314671779427&jurtd=1244421941 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/20/2023 22:22:23
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182864&num=&adid=&advid=&adsrv=29&btreg=5182864&btadsrv=flashtalking&crt=4069569&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&auevent=&105912587
23.33.119.16200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182864&num=&adid=&advid=&adsrv=29&btreg=5182864&btadsrv=flashtalking&crt=4069569&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&auevent=&105912587
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8016)
Hash e072d49341cffb322fdd359541b9e969
de1b7189b03b1aea898af405c0211a80cd25ec95
bd955388ecf026cba6c91f799b23a110cf0b3bc0cebe97ee5ed188c8f92558a2
GET /dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182864&num=&adid=&advid=&adsrv=29&btreg=5182864&btadsrv=flashtalking&crt=4069569&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&auevent=&105912587 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 12:11:05 GMT
Accept-Ranges: bytes
ETag: "8012f935ee5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3337
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
cdn.flashtalking.com/xre/518/5182811/3801681/image/3801681.gif?108765647
205.185.216.42200 OK 16 kB URL HTTP/1.1 cdn.flashtalking.com/xre/518/5182811/3801681/image/3801681.gif?108765647
IP 205.185.216.42:0
File type JPEG image data, progressive, precision 8, 728x90, components 3\012- data
Hash eb35e98e3926392abf8c605e1d9f4511
8c2909a70d32ff02513f92468723c754ba77672d
2327217d364f6c612041682eb84372d236c121b9eb6cdedb0c5c02013b266f57
GET /xre/518/5182811/3801681/image/3801681.gif?108765647 HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: Keep-Alive
ETag: "1651126065"
Cache-Control: max-age=1186
Content-Length: 15510
Content-Type: image/gif
Last-Modified: Thu, 28 Apr 2022 06:07:45 GMT
Accept-Ranges: bytes
x-amz-id-2: R4vf8HxFc6qdp70gW/Sm3yDh3b1Pas8IS/cGKiI6LdFm6Bg0+MQ6gUJAikdwouvaW50IZuRdN2k=
x-amz-request-id: 617PXMSDV0FS5FAB
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437343.dop211.sk1.t,1679437343.cds065.sk1.c
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=290&ttfrms=22&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347292578&jsCallback=dvCallback_1679437347292123&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=342237547570.9393&dvp_tukv=6128018914.819743&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1596637149024&jurtd=194141883
34.149.12.213200 OK 681 B URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=290&ttfrms=22&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347292578&jsCallback=dvCallback_1679437347292123&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=342237547570.9393&dvp_tukv=6128018914.819743&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1596637149024&jurtd=194141883
IP 34.149.12.213:0
File type ASCII text, with very long lines (1184), with no line terminators
Hash a04fd7f3ea12bcc2b2d9ee8cdc5f3188
7c3ce3b90dcf77a2ef57e557889bd0a8ae806705
a580eb0366d3338ab273e044c0dc15f39037f251a713f69ba07fa76df3468ee0
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=290&ttfrms=22&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&uid=1679437347292578&jsCallback=dvCallback_1679437347292123&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=3397726&cmp=3398513&sid=pp3&plc=33985131&adsrv=0&advid=3398311&turl=https://robocop.ru.malavida.com/android/&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&DVP_PROG_REP=1&DVP_DV_TT=1&DVP_PP_ID=3&DVP_DV_CT=1&DVPX_PP_IMP_ID=ABAjH0hkz4OBbwTEZT1uJringfh3&DVP_DBM_1=3060631&DVP_DBM_2=24779287&DVP_DBM_3=15170491623&DVP_DBM_4=396449270&DVP_DBM_5=1&DVP_DBM_6=1&DVP_DBM_7=101267060231&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=342237547570.9393&dvp_tukv=6128018914.819743&dvp_strhd=1&dvpx_strhd=1&dvp_tuid=1596637149024&jurtd=194141883 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/20/2023 22:22:23
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=00babc11e2564d10a6398065a822d80a&dup=&eoid=1000&cbust=1679437347535949
23.33.119.16302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=00babc11e2564d10a6398065a822d80a&dup=&eoid=1000&cbust=1679437347535949
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=00babc11e2564d10a6398065a822d80a&dup=&eoid=1000&cbust=1679437347535949 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=00babc11e2564d10a6398065a822d80a&akipv6=&dup=&eoid=1000
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
cdn.doubleverify.com/dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182811&num=&adid=&advid=&adsrv=29&btreg=5182811&btadsrv=flashtalking&crt=3801681&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=B8814E51-258C-1D4F-EB6D-C93E7008D153&auevent=&29928547
23.33.119.16200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182811&num=&adid=&advid=&adsrv=29&btreg=5182811&btadsrv=flashtalking&crt=3801681&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=B8814E51-258C-1D4F-EB6D-C93E7008D153&auevent=&29928547
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (8016)
Hash e072d49341cffb322fdd359541b9e969
de1b7189b03b1aea898af405c0211a80cd25ec95
bd955388ecf026cba6c91f799b23a110cf0b3bc0cebe97ee5ed188c8f92558a2
GET /dvtp_src.js?ctx=1828362&cmp=115750&sid=18330&plc=5182811&num=&adid=&advid=&adsrv=29&btreg=5182811&btadsrv=flashtalking&crt=3801681&crtname=&chnl=&unit=&pid=&uid=&dvtagver=6.1.src&dvp_ftimpid=B8814E51-258C-1D4F-EB6D-C93E7008D153&auevent=&29928547 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 21 Mar 2023 12:11:05 GMT
Accept-Ranges: bytes
ETag: "8012f935ee5bd91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3337
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=9522b83ba8f74746bf979dbf74d03ccf&dup=&eoid=1000&cbust=1679437347593465
23.33.119.16302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=9522b83ba8f74746bf979dbf74d03ccf&dup=&eoid=1000&cbust=1679437347593465
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=9522b83ba8f74746bf979dbf74d03ccf&dup=&eoid=1000&cbust=1679437347593465 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&akipv6=&dup=&eoid=1000
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
secure.flashtalking.com/oba/icon/iconc.png?EDAA_icon=y
2.18.172.49200 OK 1.3 kB URL HTTP/1.1 secure.flashtalking.com/oba/icon/iconc.png?EDAA_icon=y
IP 2.18.172.49:0
File type PNG image data, 19 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash db320ef6f3c45ab5c90887ef618de2bb
7d4bd175166545ea775fcb69b406eba11f7fa3ec
f75ada33b07cb31e16a0a0d3325961a22dc9526edb49bff04c31d7b7611f7025
GET /oba/icon/iconc.png?EDAA_icon=y HTTP/1.1
Host: secure.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Sat, 12 Apr 2014 19:14:32 GMT
Content-Type: image/png
ETag: W/"db320ef6f3c45ab5c90887ef618de2bb"
X-Varnish: 440713868 434560932
Accept-Ranges: bytes
Content-Length: 1308
Cache-Control: max-age=1229418
Expires: Wed, 05 Apr 2023 03:52:41 GMT
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
Server: Flashtalking (AKA)
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash aa5fbd3e7e9c297944b4119c07f6515d
11f0586f1a13239727d6842641ca7dc04738c997
3892a130753c63ec0f3e4d48b858fd450fb8eb6972ef136286504f7dff98048b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 17:59:54 GMT
Expires: Wed, 22 Mar 2023 17:59:54 GMT
ETag: "11f0586f1a13239727d6842641ca7dc04738c997"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tpsc-eu3.doubleverify.com/event.png?impid=00babc11e2564d10a6398065a822d80a&akipv6=&dup=&eoid=1000
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=00babc11e2564d10a6398065a822d80a&akipv6=&dup=&eoid=1000
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=00babc11e2564d10a6398065a822d80a&akipv6=&dup=&eoid=1000 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:23
Pragma: no-cache
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash aa5fbd3e7e9c297944b4119c07f6515d
11f0586f1a13239727d6842641ca7dc04738c997
3892a130753c63ec0f3e4d48b858fd450fb8eb6972ef136286504f7dff98048b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 21 Mar 2023 17:59:54 GMT
Expires: Wed, 22 Mar 2023 17:59:54 GMT
ETag: "11f0586f1a13239727d6842641ca7dc04738c997"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tpsc-eu3.doubleverify.com/event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&akipv6=&dup=&eoid=1000
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&akipv6=&dup=&eoid=1000
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&akipv6=&dup=&eoid=1000 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:23
Pragma: no-cache
d9.flashtalking.com/d9core
52.214.74.53200 11 kB URL HTTP/1.1 d9.flashtalking.com/d9core
IP 52.214.74.53:0
File type ASCII text, with very long lines (10814), with no line terminators
Hash e04cfccf77e1ccc64451e7d4d74d06ba
d1c84158e458349040ada3d98fa885733ff35682
830d3bdb3d5eeb567d0486507db4ed92a2f2d6f81a6d342692cec183774a5096
GET /d9core HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: d9.flashtalking.com
Cache-Control: private, must-revalidate, proxy-revalidate, max-age=172800
Content-Type: application/javascript;charset=utf-8
Date: Tue, 21 Mar 2023 22:22:23 GMT
ETag: 5bc31bf7d4a298e1bef9d35fce222bfc
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
Content-Length: 10814
Connection: keep-alive
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=175&ttfrms=23&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1273&ddur=34&uid=1679437347765256&jsCallback=dvCallback_1679437347765384&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=1828362&cmp=115750&sid=18330&plc=5182864&crt=4069569&btreg=5182864&btadsrv=flashtalking&adsrv=29&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_tcnt=2&dvp_sukv=155309299915.2661&dvp_tukv=1041236480.9836327&dvp_tuid=672481189662&jurtd=651176270
34.149.12.213200 OK 1.2 kB URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=175&ttfrms=23&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1273&ddur=34&uid=1679437347765256&jsCallback=dvCallback_1679437347765384&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=1828362&cmp=115750&sid=18330&plc=5182864&crt=4069569&btreg=5182864&btadsrv=flashtalking&adsrv=29&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_tcnt=2&dvp_sukv=155309299915.2661&dvp_tukv=1041236480.9836327&dvp_tuid=672481189662&jurtd=651176270
IP 34.149.12.213:0
File type ASCII text, with very long lines (3044), with no line terminators
Hash f1c829fb4d9c87d110a5bc2380776d5c
6c45a31e9a3cd48bc3646355a3ab22a051c8205a
f0d42de9f1b2f5a6f1ac431b9cd5c9a8bc9a7513f24954316014de4c65f0fd02
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=175&ttfrms=23&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETauU2%26C%3Dl9EEADTbpTauTauC%403%404%40A%5DCF%5D%3E2%3D2G%3A52%5D4%40%3ETau2%3F5C%40%3A5Tau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1273&ddur=34&uid=1679437347765256&jsCallback=dvCallback_1679437347765384&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=250&winw=300&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3590&tgjsver=3590&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=159&noc=16&nav_pltfrm=Linux%20x86_64&ctx=1828362&cmp=115750&sid=18330&plc=5182864&crt=4069569&btreg=5182864&btadsrv=flashtalking&adsrv=29&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_ftimpid=595CABF4-C7A1-28D0-D392-ED227C9C61C9&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_tcnt=2&dvp_sukv=155309299915.2661&dvp_tukv=1041236480.9836327&dvp_tuid=672481189662&jurtd=651176270 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0
Content-Encoding: br
Expires: 03/20/2023 22:22:23
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=6752429a18c640759c5ccb2936c2da4b&dup=&eoid=1000&cbust=1679437347856122
23.33.119.16302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=6752429a18c640759c5ccb2936c2da4b&dup=&eoid=1000&cbust=1679437347856122
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=6752429a18c640759c5ccb2936c2da4b&dup=&eoid=1000&cbust=1679437347856122 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=6752429a18c640759c5ccb2936c2da4b&akipv6=&dup=&eoid=1000
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
code.createjs.com/1.0.0/createjs.min.js
95.101.10.40200 OK 65 kB URL HTTP/2 code.createjs.com/1.0.0/createjs.min.js
IP 95.101.10.40:0
ASN #20940 Akamai International B.V.
Hash c80469b58ef184d945f6eeb1b2ccc6f9
1aec42fc3661378a5d7198557140aa530eb5fa73
28d4320632aa2d2b34a338e46652ca40e2d83c7386ecec8493d6f62d7b8f4c31
GET /1.0.0/createjs.min.js HTTP/1.1
Host: code.createjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flashtalking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
content-type: text/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
expires: Tue, 21 Mar 2023 22:37:23 GMT
date: Tue, 21 Mar 2023 22:22:23 GMT
x-n: S
X-Firefox-Spdy: h2
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=a5866d19627546e8bdd5465b596de4cd&dup=&eoid=1000&cbust=1679437347891696
23.33.119.16302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=a5866d19627546e8bdd5465b596de4cd&dup=&eoid=1000&cbust=1679437347891696
IP 23.33.119.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=a5866d19627546e8bdd5465b596de4cd&dup=&eoid=1000&cbust=1679437347891696 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=a5866d19627546e8bdd5465b596de4cd&akipv6=&dup=&eoid=1000
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
d9.flashtalking.com/lgc
52.214.74.53200 103 B IP 52.214.74.53:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8f9dd28b13ae96eb925b2b6a2467fe9c
c6382ed6d84d6c4e9f96787a35bcbdf9960aaf5b
13789b54467b11f1c968e286b2d094b0ffad0dee7cfc59c47bb32f023c965f52
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1599
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 21 Mar 2023 22:22:22 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=57b2d3315e98413fa9bcce2933ed12be; path=/; Max-Age=31536000; Expires=Wed, 20-Mar-2024 10:22:23 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
d9.flashtalking.com/lgc
52.214.74.53200 103 B IP 52.214.74.53:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8f9dd28b13ae96eb925b2b6a2467fe9c
c6382ed6d84d6c4e9f96787a35bcbdf9960aaf5b
13789b54467b11f1c968e286b2d094b0ffad0dee7cfc59c47bb32f023c965f52
POST /lgc HTTP/1.1
Host: d9.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1599
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,SERVER
Access-Control-Allow-Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Content-Type: application/json;charset=ISO-8859-1
Date: Tue, 21 Mar 2023 22:22:23 GMT
P3P: policyref="localhost/w3c/D9_p3p_.xml", CP="NON DSP ADM DEV PSD IVDo OTPi OUR IND STP PHY PRE NAV UNI"
Server: Apache/2.4.52 () OpenSSL/1.0.2k-fips
set-cookie: _D9J=3bad7b970f404fff9a7c183a491a71ef; path=/; Max-Age=31536000; Expires=Wed, 20-Mar-2024 10:22:23 UTC; SameSite=None;Secure;Domain=flashtalking.com
Content-Length: 103
Connection: keep-alive
tpsc-eu3.doubleverify.com/event.png?impid=6752429a18c640759c5ccb2936c2da4b&akipv6=&dup=&eoid=1000
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=6752429a18c640759c5ccb2936c2da4b&akipv6=&dup=&eoid=1000
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=6752429a18c640759c5ccb2936c2da4b&akipv6=&dup=&eoid=1000 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:23
Pragma: no-cache
servedby.flashtalking.com/state/5182811;3801681;0;401;B8814E51-258C-1D4F-EB6D-C93E7008D153/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=273545876
104.88.10.141200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/state/5182811;3801681;0;401;B8814E51-258C-1D4F-EB6D-C93E7008D153/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=273545876
IP 104.88.10.141:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /state/5182811;3801681;0;401;B8814E51-258C-1D4F-EB6D-C93E7008D153/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=273545876 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 42
Server: prod-xre-app1.frk11
Expires: Tue, 21 Mar 2023 22:22:23 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400
cdn.flashtalking.com/116327/4069569/images/Desktop_Acrobat_ARed_FullBleedVERB.png
205.185.216.42200 OK 95 kB URL HTTP/1.1 cdn.flashtalking.com/116327/4069569/images/Desktop_Acrobat_ARed_FullBleedVERB.png
IP 205.185.216.42:0
File type PNG image data, 1006 x 1006, 8-bit/color RGBA, non-interlaced\012- data
Hash 695c1135a71d9f47be5bea22f8a3e395
e4ee15bf06fef14da8cd470e5ae17869589a6ef9
8af048fc6059e8ce070092514e22e40a3ea792479247e9c8eb78fa6e483aeb4e
GET /116327/4069569/images/Desktop_Acrobat_ARed_FullBleedVERB.png HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flashtalking.com/116327/4069569/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:23 GMT
Connection: Keep-Alive
ETag: "1664411218"
Cache-Control: max-age=973
Content-Length: 95163
Content-Type: image/png
Last-Modified: Thu, 29 Sep 2022 00:26:58 GMT
Accept-Ranges: bytes
x-amz-id-2: x4kr/6fb4/he6E3+VmXgA5C3yNJHcy4j0GKhmOv6mCSjg7Dj04h3PeGOclioVZ7kGrRFatwm8ks=
x-amz-request-id: 599N7CVVW83K39WZ
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437343.dop211.sk1.t,1679437343.cds020.sk1.c
tpsc-eu3.doubleverify.com/event.png?impid=a5866d19627546e8bdd5465b596de4cd&akipv6=&dup=&eoid=1000
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=a5866d19627546e8bdd5465b596de4cd&akipv6=&dup=&eoid=1000
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=a5866d19627546e8bdd5465b596de4cd&akipv6=&dup=&eoid=1000 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: keep-alive
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:24
Pragma: no-cache
servedby.flashtalking.com/state/5182864;4069569;0;401;595CABF4-C7A1-28D0-D392-ED227C9C61C9/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=26715316
104.88.10.141200 OK 42 B URL HTTP/1.1 servedby.flashtalking.com/state/5182864;4069569;0;401;595CABF4-C7A1-28D0-D392-ED227C9C61C9/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=26715316
IP 104.88.10.141:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /state/5182864;4069569;0;401;595CABF4-C7A1-28D0-D392-ED227C9C61C9/?ft_data=d9:724d2b5f9caf4fc299a6ff3bfdd76c69;d9s:0ea05a9ba19543daa7bb2da3f9774465&cachebuster=26715316 HTTP/1.1
Host: servedby.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 42
Server: prod-xre-app5.frk11
Expires: Tue, 21 Mar 2023 22:22:24 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400
cdn.flashtalking.com/116327/4069569/images/gradient_300x250.png
205.185.216.42200 OK 22 kB URL HTTP/1.1 cdn.flashtalking.com/116327/4069569/images/gradient_300x250.png
IP 205.185.216.42:0
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bd63bf1b49f20749faa6dbcba39c0c9
fca544b112233861df2c2163d76c1bf4c7cb6e1d
d8c9e6f0bbe920b9f5be2a2da8837c6c08ff5d1b8422e2f0655b814a0f53c7a9
GET /116327/4069569/images/gradient_300x250.png HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flashtalking.com/116327/4069569/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: Keep-Alive
ETag: "1664411218"
Cache-Control: max-age=991
Content-Length: 21540
Content-Type: image/png
Last-Modified: Thu, 29 Sep 2022 00:26:58 GMT
Accept-Ranges: bytes
x-amz-id-2: a4gsTFvtRQ1flOFfAE1RwU5My62GunvV+gAvfTPgESJkuSx/bW1E3q6aV54W1+dNXG73k8IKbiA=
x-amz-request-id: 53F7HQ5GKFH6ZN1E
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437344.dop211.sk1.t,1679437344.cds261.sk1.c
secure.flashtalking.com/oba/icon/consumer-privacy-logo.png
2.18.172.49200 OK 6.0 kB URL HTTP/1.1 secure.flashtalking.com/oba/icon/consumer-privacy-logo.png
IP 2.18.172.49:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash d675694ab4d4d2eb56cca854c25d9c36
34174b9397a3cb289f892f1f98ccc51a63698360
49b19f7f2d3d0fc9d2270cd1ebd79d468ca86cf308f33b063595863e3f392e98
GET /oba/icon/consumer-privacy-logo.png HTTP/1.1
Host: secure.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Thu, 11 Feb 2021 15:39:51 GMT
Content-Type: image/png
ETag: W/"d675694ab4d4d2eb56cca854c25d9c36"
X-Varnish: 721542519 721664610
Accept-Ranges: bytes
Content-Length: 5953
Cache-Control: max-age=993
Expires: Tue, 21 Mar 2023 22:38:57 GMT
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: keep-alive
Server: Flashtalking (AKA)
cdn.flashtalking.com/116327/4069569/images/Group171472.png
205.185.216.42200 OK 48 kB URL HTTP/1.1 cdn.flashtalking.com/116327/4069569/images/Group171472.png
IP 205.185.216.42:0
File type PNG image data, 802 x 802, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c628e9acdc55344312932fc53e51890
544de55aac5ac7e8d94f23754372ed1a545beffd
dba335650002392562f88e326f52e0a88b3a1a9b9262b795b2c1b5dac900a476
GET /116327/4069569/images/Group171472.png HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flashtalking.com/116327/4069569/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: Keep-Alive
ETag: "1664411218"
Cache-Control: max-age=96
Content-Length: 47662
Content-Type: image/png
Last-Modified: Thu, 29 Sep 2022 00:26:58 GMT
Accept-Ranges: bytes
x-amz-id-2: t/BOblKZ6tZ5sJovG4Z/4czoJWNS341tteehfjfg0Hai3eedMHVNDWiCNXVOTNSrbMpwYaTZnRo=
x-amz-request-id: 53F2MRER3P0ZYFP8
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437344.dop211.sk1.t,1679437344.cds252.sk1.c
cdn.flashtalking.com/116327/4069569/images/MaskGroup171153.png
205.185.216.42200 OK 82 kB URL HTTP/1.1 cdn.flashtalking.com/116327/4069569/images/MaskGroup171153.png
IP 205.185.216.42:0
File type PNG image data, 642 x 674, 8-bit/color RGB, non-interlaced\012- data
Hash aa80b743045113baa5a45756cc258c01
d1ec09f5074cd7612fb0cc06e5a02eab6ef40d19
d3b39584486be12795fc5a5e3b7184ffc43f9ce6995f8a27b535f589d46af75b
GET /116327/4069569/images/MaskGroup171153.png HTTP/1.1
Host: cdn.flashtalking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flashtalking.com/116327/4069569/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 22:22:24 GMT
Connection: Keep-Alive
ETag: "1664411218"
Cache-Control: max-age=509
Content-Length: 82376
Content-Type: image/png
Last-Modified: Thu, 29 Sep 2022 00:26:58 GMT
Accept-Ranges: bytes
x-amz-id-2: ytA/ifwq7wqD2YYOHC1a3lq3puberC4gQQwatkd9Oi3RpN7egbc20MU1ItZUXnpnTXxWNcFUWq8=
x-amz-request-id: 53F75S3GRS2HN2V9
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers: Accept-Ranges, Content-Encoding, Content-Length, Content-Range
Access-Control-Max-Age: 3000
X-HW: 1679437343.dop211.sk1.t,1679437343.cds228.sk1.shn,1679437344.dop211.sk1.t,1679437344.cds228.sk1.c
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash dcd9f6156f4e8761c71f09d9e0461adf
4dee53387d92dee7833943bf23ae641776434c8a
d2e17254d2aed901036ec6ea67bd8ee2dbc4e7f7f4faa241ce17a4ea76f65af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash dcd9f6156f4e8761c71f09d9e0461adf
4dee53387d92dee7833943bf23ae641776434c8a
d2e17254d2aed901036ec6ea67bd8ee2dbc4e7f7f4faa241ce17a4ea76f65af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349962824
216.58.211.6302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349962824
IP 216.58.211.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349962824 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 21 Mar 2023 22:22:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1%7Chttps://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349962824&~oref=https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 21-Mar-2023 22:37:26 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349961608
216.58.211.6302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349961608
IP 216.58.211.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349961608 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 21 Mar 2023 22:22:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1%7Chttps://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349961608&~oref=https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 21-Mar-2023 22:37:26 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349997867
216.58.211.6302 Found 0 B URL HTTP/2 ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349997867
IP 216.58.211.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1|https://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349997867 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 21 Mar 2023 22:22:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1%7Chttps://ad.doubleclick.net/activity;src=1295336;type=cs;cat=Viewa0;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;ord=1?cbust=1679437349997867&~oref=https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 21-Mar-2023 22:37:26 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349998916
216.58.211.6302 Found 0 B URL HTTP/2 ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349998916
IP 216.58.211.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1|https://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349998916 HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 21 Mar 2023 22:22:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1%7Chttps://ad.doubleclick.net/ddm/activity/src=1295336;type=custom;cat=viewa2;u1=%5BTOTALPAGETIME%5D;u2=%5BBUCKET_0%5D;u3=%5BBUCKET_1_9%5D;u4=%5BBUCKET_10_19%5D;u5=%5BBUCKET_20_29%5D;u6=%5BBUCKET_30_39%5D;u7=%5BBUCKET_40_49%5D;u8=%5BBUCKET_50_59%5D;u9=%5BBUCKET_60_69%5D;u10=%5BBUCKET_70_79%5D;u11=%5BBUCKET_80_89%5D;u12=%5BBUCKET_90_99%5D;u13=%5BBUCKET_100%5D;u14=115750;u15=18330;u16=%5BDVP_ADID%5D;u17=;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;ord=1?cbust=1679437349998916&~oref=https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 21-Mar-2023 22:37:26 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash dcd9f6156f4e8761c71f09d9e0461adf
4dee53387d92dee7833943bf23ae641776434c8a
d2e17254d2aed901036ec6ea67bd8ee2dbc4e7f7f4faa241ce17a4ea76f65af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 21 Mar 2023 22:22:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpsc-eu3.doubleverify.com/event.png?impid=00babc11e2564d10a6398065a822d80a&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=355&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=19&vltms=355&sei=145&vetms=9&tuviims=216&tuviems=580&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=904&msrcannum=3&ismms=1070&isumms=1069&nvr=6&isgmmims=1070&isgmv4mims=1070&elmtp=1&isbxdms=2475&b0=100&b11=1406&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=1506&sftb=1506&msrdp=2&naral=640&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2075&isuiabvms=2075&isgmpims=1170&isgmv4dpims=2075&ispmxpms=2075&engalms=1069&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3397&cbust=1679437350534599
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=00babc11e2564d10a6398065a822d80a&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=355&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=19&vltms=355&sei=145&vetms=9&tuviims=216&tuviems=580&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=904&msrcannum=3&ismms=1070&isumms=1069&nvr=6&isgmmims=1070&isgmv4mims=1070&elmtp=1&isbxdms=2475&b0=100&b11=1406&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=1506&sftb=1506&msrdp=2&naral=640&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2075&isuiabvms=2075&isgmpims=1170&isgmv4dpims=2075&ispmxpms=2075&engalms=1069&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3397&cbust=1679437350534599
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event.png?impid=00babc11e2564d10a6398065a822d80a&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=355&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=19&vltms=355&sei=145&vetms=9&tuviims=216&tuviems=580&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=904&msrcannum=3&ismms=1070&isumms=1069&nvr=6&isgmmims=1070&isgmv4mims=1070&elmtp=1&isbxdms=2475&b0=100&b11=1406&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=1506&sftb=1506&msrdp=2&naral=640&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2075&isuiabvms=2075&isgmpims=1170&isgmv4dpims=2075&ispmxpms=2075&engalms=1069&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3397&cbust=1679437350534599 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:27 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:27
Pragma: no-cache
tpsc-eu3.doubleverify.com/event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=261&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=34&vltms=261&sei=145&vetms=42&tuviims=312&tuviems=615&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=392&msrcannum=3&ismms=1031&isumms=1030&nvr=6&isgmmims=1031&isgmv4mims=1031&elmtp=6&isbxdms=2338&b0=100&b11=1310&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=1410&sftb=1410&msrdp=3&naral=128&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2037&isuiabvms=2037&isgmpims=1131&isgmv4dpims=2037&ispmxpms=2037&engalms=1029&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3320&cbust=1679437350592602
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=261&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=34&vltms=261&sei=145&vetms=42&tuviims=312&tuviems=615&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=392&msrcannum=3&ismms=1031&isumms=1030&nvr=6&isgmmims=1031&isgmv4mims=1031&elmtp=6&isbxdms=2338&b0=100&b11=1310&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=1410&sftb=1410&msrdp=3&naral=128&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2037&isuiabvms=2037&isgmpims=1131&isgmv4dpims=2037&ispmxpms=2037&engalms=1029&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3320&cbust=1679437350592602
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event.png?impid=9522b83ba8f74746bf979dbf74d03ccf&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=261&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=0&tetms=4&msltms=34&vltms=261&sei=145&vetms=42&tuviims=312&tuviems=615&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=392&msrcannum=3&ismms=1031&isumms=1030&nvr=6&isgmmims=1031&isgmv4mims=1031&elmtp=6&isbxdms=2338&b0=100&b11=1310&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=1410&sftb=1410&msrdp=3&naral=128&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=2037&isuiabvms=2037&isgmpims=1131&isgmv4dpims=2037&ispmxpms=2037&engalms=1029&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3320&cbust=1679437350592602 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:27 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:27
Pragma: no-cache
tpsc-eu3.doubleverify.com/event.png?impid=6752429a18c640759c5ccb2936c2da4b&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=42&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=34&tetms=4&msltms=33&vltms=42&sei=146&vetms=50&tuviims=199&tuviems=291&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=968&msrcannum=4&ismms=34&isumms=33&nvr=6&isgmmims=34&isgmv4mims=34&elmtp=1&isbxdms=2202&b0=100&b11=2170&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=2270&sftb=2270&msrdp=0&naral=704&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1095&isuiabvms=1095&isgmpims=262&isgmv4dpims=1095&ispmxpms=1095&engalms=33&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3114&cbust=1679437350857820
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=6752429a18c640759c5ccb2936c2da4b&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=42&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=34&tetms=4&msltms=33&vltms=42&sei=146&vetms=50&tuviims=199&tuviems=291&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=968&msrcannum=4&ismms=34&isumms=33&nvr=6&isgmmims=34&isgmv4mims=34&elmtp=1&isbxdms=2202&b0=100&b11=2170&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=2270&sftb=2270&msrdp=0&naral=704&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1095&isuiabvms=1095&isgmpims=262&isgmv4dpims=1095&ispmxpms=1095&engalms=33&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3114&cbust=1679437350857820
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event.png?impid=6752429a18c640759c5ccb2936c2da4b&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=42&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=34&tetms=4&msltms=33&vltms=42&sei=146&vetms=50&tuviims=199&tuviems=291&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=968&msrcannum=4&ismms=34&isumms=33&nvr=6&isgmmims=34&isgmv4mims=34&elmtp=1&isbxdms=2202&b0=100&b11=2170&adhgt=250&adwdth=300&norwdth=300&norhgt=250&vsos=6&dvp_vsosnmr=16&lftb=2270&sftb=2270&msrdp=0&naral=704&vct=512&vphgt=1024&vpwdth=1280&chgt=250&cwdth=300&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1095&isuiabvms=1095&isgmpims=262&isgmv4dpims=1095&ispmxpms=1095&engalms=33&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=2&meeid=1&ttfurm=3114&cbust=1679437350857820 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:27 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:27
Pragma: no-cache
tpsc-eu3.doubleverify.com/event.png?impid=a5866d19627546e8bdd5465b596de4cd&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=44&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=52&tetms=4&msltms=20&vltms=44&sei=146&vetms=22&tuviims=193&tuviems=259&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=456&msrcannum=4&ismms=29&isumms=28&nvr=6&isgmmims=29&isgmv4mims=29&elmtp=6&isbxdms=2110&b0=100&b11=2083&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=2183&sftb=2183&msrdp=1&naral=192&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1096&isuiabvms=1096&isgmpims=266&isgmv4dpims=1096&ispmxpms=1096&engalms=28&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3083&cbust=1679437350891113
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=a5866d19627546e8bdd5465b596de4cd&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=44&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=52&tetms=4&msltms=20&vltms=44&sei=146&vetms=22&tuviims=193&tuviems=259&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=456&msrcannum=4&ismms=29&isumms=28&nvr=6&isgmmims=29&isgmv4mims=29&elmtp=6&isbxdms=2110&b0=100&b11=2083&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=2183&sftb=2183&msrdp=1&naral=192&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1096&isuiabvms=1096&isgmpims=266&isgmv4dpims=1096&ispmxpms=1096&engalms=28&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3083&cbust=1679437350891113
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event.png?impid=a5866d19627546e8bdd5465b596de4cd&flavor=0&gdpr=&gdpr_consent=&dvp_gdpr_Error=3&dvp_gdv2_Error=3&vdur=44&eoid=14&msrjs=3590&sdf=67108870&vit=2&isvelg=1&rmi=16&tltms=52&tetms=4&msltms=20&vltms=44&sei=146&vetms=22&tuviims=193&tuviems=259&engms=1&engisel=1&dvp_dtcov=4&msrcanlm=456&msrcannum=4&ismms=29&isumms=28&nvr=6&isgmmims=29&isgmv4mims=29&elmtp=6&isbxdms=2110&b0=100&b11=2083&adhgt=90&adwdth=728&norwdth=728&norhgt=90&vsos=5&dvp_vsosnmr=16&lftb=2183&sftb=2183&msrdp=1&naral=192&vct=512&vphgt=1024&vpwdth=1280&chgt=90&cwdth=728&scrhgt=1024&scrwdth=1280&strp=0&advisonl=false&isiabvms=1096&isuiabvms=1096&isgmpims=266&isgmv4dpims=1096&ispmxpms=1096&engalms=28&dvp_dpr=1&ee_dp_cvcmeeid=1&metp=1&meeid=1&ttfurm=3083&cbust=1679437350891113 HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com
Connection: keep-alive
Referer: https://fab2cf7900e49aa7dc7eb70e36924460.safeframe.googlesyndication.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 204 No Content
Date: Tue, 21 Mar 2023 22:22:27 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: max-age=0
Expires: 03/20/2023 22:22:27
Pragma: no-cache
sdk.privacy-center.org/sdk.244ec6c315cbca671a833fb1fa9c2272ced1eae3.js
54.230.111.7200 OK 0 B URL HTTP/2 sdk.privacy-center.org/sdk.244ec6c315cbca671a833fb1fa9c2272ced1eae3.js
IP 54.230.111.7:0
GET /sdk.244ec6c315cbca671a833fb1fa9c2272ced1eae3.js HTTP/1.1
Host: sdk.privacy-center.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://robocop.ru.malavida.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 21 Mar 2023 11:37:38 GMT
last-modified: Tue, 21 Mar 2023 11:32:47 GMT
etag: W/"228014ced40238a9db8a0e5630fe4794"
x-amz-server-side-encryption: AES256
x-amz-meta-s3cmd-attrs: atime:1679398004/ctime:1679398004/gid:0/gname:root/md5:228014ced40238a9db8a0e5630fe4794/mode:33188/mtime:1679398004/uid:0/uname:root
cache-control: public, max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lJQWJpjTkMn_ASVz-3bnJ-hfGXWgO7tRC6tSGQklkMNqxk90bOCj0A==
age: 38683
X-Firefox-Spdy: h2