s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip
51.75.52.14301 Moved Permanently 185 B URL HTTP/1.1 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip
IP 51.75.52.14:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Wed, 05 Oct 2022 16:07:08 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:08:29 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YYzAsFpVOsXJtYa1F-ttd-sZGCtXeWFBlgAqrJNe_-iFZ3c1wFJaDA==
Age: 3520
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4033
Expires: Wed, 05 Oct 2022 17:14:22 GMT
Date: Wed, 05 Oct 2022 16:07:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
54.230.111.14200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 54.230.111.14:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2dkMQQFvxNs_8orefQbrz9c2l8d9qzGcfXz4wMJFeVt2u5zB-rBMZA==
age: 43477
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3c633adbd53fb90faf062424f628df46
1661063c5d82d1666e9d12319b86e402a42886ea
b0203ac93f54dade1f91df23e097439e930264aafdf1e0c8ddffe5cf2cefa562
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0203AC93F54DADE1F91DF23E097439E930264AAFDF1E0C8DDFFE5CF2CEFA562"
Last-Modified: Wed, 05 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8294
Expires: Wed, 05 Oct 2022 18:25:23 GMT
Date: Wed, 05 Oct 2022 16:07:09 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 16:07:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 15:30:28 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 15:46:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f6qk6liOyRAy6XBaGSziwO4LG5eF9fZfCkKq6effgO0u7vQ_qWNYaQ==
Age: 2256
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5251
Cache-Control: max-age=149233
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:09 GMT
Etag: "633d3b1b-1d7"
Expires: Fri, 07 Oct 2022 09:34:22 GMT
Last-Modified: Wed, 05 Oct 2022 08:06:51 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.190.4101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.190.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tQcyaG4U9c2Vu8z5xx/Idw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qjRvBhxfdAsiD2m9LqA9RT9zXY4=
mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg
54.36.106.111200 OK 3.3 kB URL HTTP/2 mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg
IP 54.36.106.111:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3315), with no line terminators
Hash c141857003053201a2b0239f9c2571a4
ed829bb667018790d2256bdb84cbc40e910b890d
f4a8a85124370b95447eb9818a3feb3c646f126cf7abd4f80c80605e38b80a10
GET /build/public/images/c141857003053201a2b0239f9c2571a4.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/svg+xml
content-length: 3315
last-modified: Wed, 04 May 2022 16:07:08 GMT
etag: "6272a4ac-cf3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Discord.gif
54.36.106.111200 OK 946 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Discord.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 863bd8be9dbe3fc6ea1c2ebe5e17b0f2
0b8090fa9037490c85fa5bc389e9f89a83540862
0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 946
last-modified: Tue, 30 Aug 2022 10:47:27 GMT
etag: "630deabf-3b2"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/uTorrent.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/uTorrent.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash d8b3a7cb134c0c01d8b730eb52efa445
e5f8e04f40a7149aa1be7256634f86cf370ab7af
8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1477
last-modified: Mon, 19 Sep 2022 16:18:59 GMT
etag: "63289673-5c5"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash de4422d577c482189dfe5966c7362737
473e997d0ded39d3ccb1c54f874576c71cc1405f
ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1438
last-modified: Tue, 04 Oct 2022 13:08:00 GMT
etag: "633c3030-59e"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zoom.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zoom.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f016ef461c4b5d433f2b75874a3fa9f0
84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb
ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1713
last-modified: Mon, 26 Sep 2022 21:18:42 GMT
etag: "63321732-6b1"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MediaGet.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MediaGet.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash b69d7ccb1c036103aaf41086187b37fa
3cec81950db96a58ac7da7a216777c18f960ce0a
2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1589
last-modified: Mon, 13 Jun 2022 09:32:04 GMT
etag: "62a70414-635"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zona.gif
54.36.106.111200 OK 485 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zona.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash af31d9cab2614849c9f71f67744d5fe3
51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec
885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/WinRAR.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/WinRAR.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash de072b93dbf65068ccfc9a91e722ae90
51e63f9279c737c782e9fce4d1991a2286eb1b65
5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1484
last-modified: Sat, 14 May 2022 06:43:23 GMT
etag: "627f4f8b-5cc"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/CCleaner.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/CCleaner.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 28ecdadc6ce55c1c52937fe69634148f
53a1e07d37c4f4e940dcf928f071e1e9698cef5c
56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1626
last-modified: Tue, 20 Sep 2022 12:59:01 GMT
etag: "6329b915-65a"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Steam.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Steam.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 86c651e4629614e6c3d484025d31ec96
83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033
e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1464
last-modified: Fri, 30 Sep 2022 01:28:11 GMT
etag: "6336462b-5b8"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Rufus.gif
54.36.106.111200 OK 860 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Rufus.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 8c927578b093422fe11e609f10c18aca
1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a
13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 860
last-modified: Thu, 04 Aug 2022 08:36:46 GMT
etag: "62eb851e-35c"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f31881c998b0af01243f70cb5a1aedfc
56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7
ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1689
last-modified: Thu, 14 Jul 2022 18:06:37 GMT
etag: "62d05b2d-699"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/7-Zip.gif
54.36.106.111200 OK 401 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/7-Zip.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 769824aa176b2636b1640c3d60afb524
655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9
f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 401
last-modified: Sat, 16 Jul 2022 17:26:25 GMT
etag: "62d2f4c1-191"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
54.36.106.111200 OK 929 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 9833effb5dd42a027e756f796ddf4cfe
9e99332744c5484e396a029a9d34bf957dff3f73
2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 929
last-modified: Wed, 28 Sep 2022 03:58:35 GMT
etag: "6333c66b-3a1"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
54.36.106.111200 OK 964 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 11c35a7e206514cf071c7ad75efee9a6
946062bc95112ae2b7e73a5e33d0a2884d983e34
bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 964
last-modified: Wed, 24 Aug 2022 14:25:20 GMT
etag: "630634d0-3c4"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 84cfb69793f19552fdda4e7ff93ff571
b74176c770ae2a5e7591cf0c220c2031394e343a
c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1014
last-modified: Wed, 24 Aug 2022 16:09:40 GMT
etag: "63064d44-3f6"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 475687f8d9f500bd84aff0051af75dc0
747eb724c7cd54c9cc583ec2eb034a04accb7cef
4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1023
last-modified: Sun, 02 Oct 2022 15:42:15 GMT
etag: "6339b157-3ff"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RetroArch.gif
54.36.106.111200 OK 658 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RetroArch.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 7945fe0bc44f843763335bce464ceb83
86cdcc9ce5e048cfb64f523e8b416908d3662861
cb0cf51feec1b058d1460357873a02951d5782ab55f9a5e61f678ba432f37d64
GET /images/ru/win/icons/RetroArch.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 658
last-modified: Wed, 05 Oct 2022 03:11:23 GMT
etag: "633cf5db-292"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/NTLite.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/NTLite.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 378f9ac95900f41dbddbf82148b81ccd
ae750191ef59be34116a1eb9b83baaf11cc15c24
d8c7b7c617172501163ee3caaf69138af23eedc9531b9bcbd3ea4e523eed35c3
GET /images/ru/win/icons/NTLite.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1671
last-modified: Wed, 05 Oct 2022 03:09:41 GMT
etag: "633cf575-687"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/nLite.gif
54.36.106.111200 OK 1.1 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/nLite.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 5b85f1f4fb73b5cbff50541bada81ab9
47801b4a083506b6084642a3de5542ef55403428
2cb29671067a8c9e84265272f757081dfa28a50fd1bd3afc0ad2a3d4da4c78dc
GET /images/ru/win/icons/nLite.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1141
last-modified: Wed, 05 Oct 2022 03:08:29 GMT
etag: "633cf52d-475"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RDrive-Image.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RDrive-Image.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6756f801051c42d51b24e89a61b72973
089b7eb64e734e0ec40a08d1564daf51d0dea64b
cdc3c4c387945ee6820f2a85ee09959e3496418d1fa2171017b6193d07034287
GET /images/ru/win/icons/RDrive-Image.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1529
last-modified: Wed, 05 Oct 2022 03:07:12 GMT
etag: "633cf4e0-5f9"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/e-Campaign.gif
54.36.106.111200 OK 466 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/e-Campaign.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash c229380f07831a1ae283b20d0d4e6940
f7151fa8ad5f9cada75c998264c4cdfc33eda43c
2c6f0dc54cf0de5793f27d03b9f70754bf6e7bc77d6713a4cd15c9f6a9ac9b55
GET /images/ru/win/icons/e-Campaign.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 466
last-modified: Wed, 05 Oct 2022 03:05:20 GMT
etag: "633cf470-1d2"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/NetLimiter.gif
54.36.106.111200 OK 142 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/NetLimiter.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 3cc1e3d88fce6ac4f918549bb3312788
a4acd63e1c15258a149a09cf6e7b8c06829313ec
f0b0403cc10a269e2ecda8d6610bafcb1c713b33b7309c7d63181384dcf82756
GET /images/ru/win/icons/NetLimiter.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 142
last-modified: Wed, 05 Oct 2022 03:04:18 GMT
etag: "633cf432-8e"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/DSLR-Remote-Pro.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/DSLR-Remote-Pro.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash b4652bb2c617ff2dffa3240420700e6e
635e834bdf794bc98608d950741ddf13d452895e
b452f6ba04e2086f2e8eaf7dd0232d900c9a6f13307df6ca70789d46f53ff009
GET /images/ru/win/icons/DSLR-Remote-Pro.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1695
last-modified: Tue, 04 Oct 2022 17:45:00 GMT
etag: "633c711c-69f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/PureVPN.gif
54.36.106.111200 OK 979 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/PureVPN.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 42a85a6dd228928713cabbbf70c2ce75
137a56d5ba84d51245fcf89fef877471c0f7859d
6659d1ced61a1927a35a98990ed09cc4006c646a54fbed2bea4e16a788d9122d
GET /images/ru/win/icons/PureVPN.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 979
last-modified: Tue, 04 Oct 2022 17:42:19 GMT
etag: "633c707b-3d3"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Farbar-Recovery-Scan-Tool.gif
54.36.106.111200 OK 873 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Farbar-Recovery-Scan-Tool.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 134e73e517108a1a05890704bf4e3bb6
0b36880e8642421cac40d53f9e4edfc30c3207c5
c244afa65db245f9bbe966957cc78ccb83559198ddcf57e5132d57d43c560411
GET /images/ru/win/icons/Farbar-Recovery-Scan-Tool.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 873
last-modified: Tue, 04 Oct 2022 17:38:06 GMT
etag: "633c6f7e-369"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Microsoft-SkyDrive.gif
54.36.106.111200 OK 243 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Microsoft-SkyDrive.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 9c23ab02b32153cddb1665c6ec0a0abe
ca7911df976c076554d737e89e83581371b6711a
5089ec364fadbed8a80cd6d94693dc8af7fe1f3a3dfd7298885a63323d3f2199
GET /images/ru/win/icons/Microsoft-SkyDrive.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 243
last-modified: Tue, 04 Oct 2022 17:34:21 GMT
etag: "633c6e9d-f3"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Collectorzcom-Comic-Collector.gif
54.36.106.111200 OK 1.1 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Collectorzcom-Comic-Collector.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6698a2bec5d0c69520b13378037e8ec4
5b657085dc5a9c98daf2c76c4842cd6eaf64e6d3
35678f2f80b769d791abf1c9a703b716d652d59328f01ef5a8a4ccc2cc2d1902
GET /images/ru/win/icons/Collectorzcom-Comic-Collector.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1079
last-modified: Tue, 04 Oct 2022 17:28:05 GMT
etag: "633c6d25-437"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/TemplateToaster.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/TemplateToaster.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 0e756b765e08e376e27a393128db6bb7
253b56ffa51c21d48fd2bbb83fdb2ec125859c31
05333e5b9a2b6eb86b7b9c4b3776d69fb03b35a2ca7321f4d1222088ac0b8df3
GET /images/ru/win/icons/TemplateToaster.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1528
last-modified: Tue, 04 Oct 2022 17:26:19 GMT
etag: "633c6cbb-5f8"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif
54.36.106.111200 OK 848 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/PRO32-Total-Security.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f9f9b152e278ee39af072c7c2e859c3d
5dd5b28438b2fc167d2b6bf4b1ec793b4acdf187
c5d4f6140c445842db62d99db31866ac02b944e818f238573068acd765bc9188
GET /images/ru/win/icons/PRO32-Total-Security.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 848
last-modified: Wed, 14 Sep 2022 17:33:56 GMT
etag: "63221084-350"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Microsoft-Excel.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 30\012- data
Hash a63dd04869627f71db400d73a27b5ca0
dac47496dcf93653fdd2ae8d79ca63d084f6ae66
bb2072bf390060645aeabe023cf3b3dc5c30a85d4be46accaa4874a4186cfd41
GET /images/ru/win/icons/Microsoft-Excel.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1619
last-modified: Thu, 05 May 2022 21:51:54 GMT
etag: "627446fa-653"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Microsoft-Word.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6c8bbb19f01d93c146b12b544eb16262
2819fd34886e161fde3f7b3015c08304cf213798
b5c6cf5d91ab028b95a9007a84317bfbf9699806351edf3ccbdc92ccb0a58bc5
GET /images/ru/win/icons/Microsoft-Word.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1640
last-modified: Thu, 05 May 2022 20:00:12 GMT
etag: "62742ccc-668"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/AdGuard-VPN.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 940d8a94d991a9e988a36281e5952035
419b12a90557636f6e9f2114fc86a0368d5a55e4
8b040e4d326df30674cc378b526329bd2a12f1da1fc50e8c962a2a7929bceceb
GET /images/ru/win/icons/AdGuard-VPN.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1484
last-modified: Fri, 16 Sep 2022 11:13:15 GMT
etag: "63245a4b-5cc"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/R7-Office.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/R7-Office.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 1499cbae0c5daf1847cb5c434bfa7566
132fbdcac2baf80287d427fe49ece5dd4720baab
32c75cce2d6ec258c4c1448621cb4b6f1eaa0b771bfca72075069af4cae2de01
GET /images/ru/win/icons/R7-Office.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1694
last-modified: Thu, 17 Mar 2022 13:37:40 GMT
etag: "623339a4-69e"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MyOffice.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MyOffice.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 3d2b9a92a2e317fe7a7686045416148a
9425c7683f8a355faca109b40b17190a9c86c294
118eb30dc6afaff9364a4ff71a3a5bd598d390b8d469fc43c304cac39a18560f
GET /images/ru/win/icons/MyOffice.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1490
last-modified: Tue, 15 Mar 2022 11:26:53 GMT
etag: "623077fd-5d2"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Telamon-Cleaner.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f9bf9be5e6b7befa2aa9a9ccf47e87d9
62ca7e70e430a625a9526541df18db4219dd8ea5
04eae19badca734312ed80cb0fcc2faf01baff045d6a6a5e6905daf13e9f00f6
GET /images/ru/win/icons/Telamon-Cleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1626
last-modified: Sun, 06 Mar 2022 02:40:04 GMT
etag: "62241f04-65a"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Armoury-Crate.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 88fe56a42c5999a0142b18179303f9a7
de0d7811d886843fc98d2c97047d725e972947ee
4ea7b4443569a3ceab9d4e4b359f4a01d924846e00e617bd0045f3cbc65afc04
GET /images/ru/win/icons/Armoury-Crate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1766
last-modified: Wed, 19 Jan 2022 00:31:37 GMT
etag: "61e75be9-6e6"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/HyperX-NGENUITY.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash e8cf700f2ff4a4b559134d26b3fa849c
70dc81bfb5652933be51348263ea0ff258fd3998
e1d4a698910912f734df70d9aa9fe5e210c0a8cd6b62f5e740de8a20ff97ccdf
GET /images/ru/win/icons/HyperX-NGENUITY.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1768
last-modified: Tue, 23 Aug 2022 08:39:22 GMT
etag: "6304923a-6e8"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/NVIDIA-GeForce-Now.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash b50affa05a63f1ea8339f1f69533ad72
d80325990b6742c14f67044dacb3f581a67f9e3b
c197af37f8be5741c380b74550ad3635a655772a6e369f2791cec30d8270db99
GET /images/ru/win/icons/NVIDIA-GeForce-Now.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1812
last-modified: Mon, 03 Oct 2022 15:18:42 GMT
etag: "633afd52-714"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Microsoft-Office-2021.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 8c836563ea095a56c60cc1db682ba1a6
9a10d5fc1962be84941e283e178a41251c31a491
9581d845d05fa8ec32b01da9732f7ee7da556fbe271677d3e9c2947b6e74172b
GET /images/ru/win/icons/Microsoft-Office-2021.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1539
last-modified: Sun, 26 Dec 2021 15:18:26 GMT
etag: "61c887c2-603"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Figma.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Figma.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash bc0180a815e6d63d70b2262def7bb0f0
399eab7ec86e08b41691e57bc21e1049b76db3a6
ecd0a19ce6d26ba03550870b6f42f40e4d289c6d5e842ed4ac0819e0ad2de0e4
GET /images/ru/win/icons/Figma.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/gif
content-length: 1809
last-modified: Tue, 05 Apr 2022 21:47:49 GMT
etag: "624cb905-711"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28445_small.jpg
54.36.106.111200 OK 9.1 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28445_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash d21f28ce9ef212bb54e71ea9c6411380
0257911ac06d90b7097c84a001ca95f742578541
8f44934fd098b0cad038302d50d97ace212a7491eab25bb659ed50a421c099af
GET /images/arts/ru/screens/28445_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 9145
last-modified: Sun, 02 Oct 2022 19:49:12 GMT
etag: "6339eb38-23b9"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28443_small.jpg
54.36.106.111200 OK 11 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28443_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash f4ec2e491cb08ddfd682c6cd84016776
770bf22857645bdd9b2f2a1734918e61b631ca88
32e8fd76c4526bf9dd630f9583a639d5811fa58c766c04da2695a9094def1324
GET /images/arts/ru/screens/28443_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 11279
last-modified: Sun, 18 Sep 2022 15:01:21 GMT
etag: "632732c1-2c0f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28442_small.jpg
54.36.106.111200 OK 17 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28442_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash 15828d360118366377b1419104814af3
8390a95680252e9d4672ec9bd26a9c7ca202d573
b7c45767f2d7c5c9af1b2b0704b7315c4e62dd0fcf6d22b7590730b084e0e03f
GET /images/arts/ru/screens/28442_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 17075
last-modified: Wed, 07 Sep 2022 00:36:28 GMT
etag: "6317e78c-42b3"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28441_small.jpg
54.36.106.111200 OK 158 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28441_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Macintosh), datetime=2022:07:28 14:01:21], baseline, precision 8, 190x190, components 3\012- data
Size 158 kB (158511 bytes)
Hash 5a4c909ce1a53b3780a8ae729ba2c585
326540caaedad3bd2c782e849b3db910af033783
2c8cfe2cb61febb869cdd0b2afbe6a2df57b3783629dbc18fc61e2de76de9e10
GET /images/arts/ru/screens/28441_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 158511
last-modified: Wed, 31 Aug 2022 14:02:00 GMT
etag: "630f69d8-26b2f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28440_small.jpg
54.36.106.111200 OK 20 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28440_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 34e6b9f5686d42f769d65da3c703afb3
be3eb1eb6a659519f7d97ded63d51853519454cd
499a3a807b45a524e1d1d9ace22de433c7b91ce04db2d24a411b0e45fc034245
GET /images/arts/ru/screens/28440_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 20282
last-modified: Sun, 14 Aug 2022 14:14:16 GMT
etag: "62f90338-4f3a"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28439_small.jpg
54.36.106.111200 OK 15 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28439_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 190x190, components 3\012- data
Hash 70a04d63129725567c2182f64f0d1af1
bd3ac462016f4eaa9d40a45842bca46b37bf1e9b
f85c61c2615cfa6524e9956c840a2a424940fac22d252c711ee639b01c785535
GET /images/arts/ru/screens/28439_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 14905
last-modified: Sat, 30 Jul 2022 22:51:54 GMT
etag: "62e5b60a-3a39"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28438_small.jpg
54.36.106.111200 OK 7.0 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28438_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 3009c49202998ab4cd1216520a8cc819
2fb13ed4c45430c3b4c9ccaeeb55da24c2caf748
5faeae1034449278fe2ef1e5965b3406d7225272a3d0b192ca04c47b0f0418d2
GET /images/arts/ru/screens/28438_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 6953
last-modified: Tue, 12 Jul 2022 21:13:06 GMT
etag: "62cde3e2-1b29"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28436_small.jpg
54.36.106.111200 OK 11 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28436_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash e9a1e586d89757c51c435f35fb623c99
191e70d270b703136a23a0b700332cf701038887
023b908efcb5a0d08961b40e16d0b8c06e0d3a69e08fe369d1b2f8f062da03d5
GET /images/arts/ru/screens/28436_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 11359
last-modified: Fri, 01 Jul 2022 02:45:56 GMT
etag: "62be5fe4-2c5f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28435_small.jpg
54.36.106.111200 OK 12 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28435_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 8cdac03ec87f15dd49806715294e3f73
ff0b7b256ef5fa2a5df52fad7bac3fbdeaa97e62
086eae1521a24aca3be7bb07a27d76520cc09081c8d8e3708cb34e382c5cb26e
GET /images/arts/ru/screens/28435_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 11529
last-modified: Wed, 01 Jun 2022 02:36:31 GMT
etag: "6296d0af-2d09"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28433_small.jpg
54.36.106.111200 OK 15 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28433_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 43707607b0b610e3b0e8978627b6745e
64c80a94ca4173efbce299440f3dd294f198dc9b
193f60af8fa128a5853a3aeb7f2391a44335f7dbdc06ec29a82c858e0569035e
GET /images/arts/ru/screens/28433_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 14838
last-modified: Fri, 27 May 2022 19:21:56 GMT
etag: "629124d4-39f6"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
54.36.106.111200 OK 1.8 kB URL HTTP/2 mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
IP 54.36.106.111:0
File type PNG image data, 117 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c539cc4109c4ed80ec05cb5812112d1c
e54ad527d32113957d3c6fbc42f5dee7cf2a15f5
3abcf0a2a296461fb1cf4584d08a2a9afdbd0c0861a7211ab6f53fc64f8fe83a
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/png
content-length: 1770
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72471_small.jpg
54.36.106.111200 OK 13 kB URL HTTP/2 games.mydiv.net/images/screens/72471_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash e03a38f4b7f52d7134eafe7dda13755f
0f789f1a474c49fa5a221d73f74e515f8e7218d3
feac5f8f765dec64703402e27becbfa88e1549c477b207074eba045a0d17e7d0
GET /images/screens/72471_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 13089
last-modified: Sun, 02 Oct 2022 20:56:45 GMT
etag: "6339fb0d-3321"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72466_small.jpg
54.36.106.111200 OK 9.5 kB URL HTTP/2 games.mydiv.net/images/screens/72466_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 227b393f3b5f91804e207b6dc9a57169
3e2c23dea5d23ef8640c421686550b535c058b82
cf15c2f79cdc2a6bddb47ac1567b620ca5eb3d988d00f02ab08044f1648fc9e5
GET /images/screens/72466_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 9539
last-modified: Sun, 02 Oct 2022 16:39:49 GMT
etag: "6339bed5-2543"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72461_small.jpg
54.36.106.111200 OK 8.1 kB URL HTTP/2 games.mydiv.net/images/screens/72461_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash ebd753b3d4ce1a16fe861fab2ede51f4
69f60ca1a2a070541cb44b6bfac89961a6dd5a75
080242fe4bf45120f9ec74c7a1e2516a31069c918f6f926fbff2d69a1692e980
GET /images/screens/72461_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 8056
last-modified: Wed, 21 Sep 2022 02:10:51 GMT
etag: "632a72ab-1f78"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72456_small.jpg
54.36.106.111200 OK 4.8 kB URL HTTP/2 games.mydiv.net/images/screens/72456_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 1315c02c0e96c35ca2e051dc9d95664c
bb864308628da9bc136d0dbaf3e9b121087ec2d9
9c4e096b7afe94c3dc4e31102e6a480cf42243260fcd2fc598762fc866d5618d
GET /images/screens/72456_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 4790
last-modified: Sun, 18 Sep 2022 15:26:53 GMT
etag: "632738bd-12b6"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72451_small.jpg
54.36.106.111200 OK 15 kB URL HTTP/2 games.mydiv.net/images/screens/72451_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash e08b5350ba747049494dedeb4ab7c409
133fe8624e0fbea168dc2187cdb0f2bf879be302
56f98fc1eaca77842715b4ecdd5d9c459d4f2462ba7b264fcf5635cbe2089b69
GET /images/screens/72451_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 15208
last-modified: Wed, 07 Sep 2022 10:25:01 GMT
etag: "6318717d-3b68"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72446_small.jpg
54.36.106.111200 OK 19 kB URL HTTP/2 games.mydiv.net/images/screens/72446_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash becf70ae12a63a8b4f7305914437817b
4d3bafa9331869fbfdcd18a14ce1add3846c51e2
9344865484ed02dc880b48b8c7bb4fed21f7ddfb567435a18d106ace42d2f3ac
GET /images/screens/72446_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 18858
last-modified: Wed, 31 Aug 2022 21:09:08 GMT
etag: "630fcdf4-49aa"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72441_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 games.mydiv.net/images/screens/72441_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 981fb09b10326cf19860686cba20d62b
3272ac38c136d7fde4c092e290c0d57c9c98898f
6081e6cc87c64b11e834b68253ec47d8fc9f0244b400239c309f7b38128b70cd
GET /images/screens/72441_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 16506
last-modified: Wed, 31 Aug 2022 19:53:33 GMT
etag: "630fbc3d-407a"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/69355_small.jpg
54.36.106.111200 OK 8.7 kB URL HTTP/2 games.mydiv.net/images/screens/69355_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash da504253ef75615ad9551c23b3224ab3
bcf2ff423726b8fc20e47ba37e279d1caf394298
c9f6c74d478b6789721f4f48f6f5172f5c12bbf1c625f208ad0956e8261b4874
GET /images/screens/69355_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Wed, 29 Jan 2014 07:26:01 GMT
etag: "52e8ad09-21f7"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72436_small.jpg
54.36.106.111200 OK 42 kB URL HTTP/2 games.mydiv.net/images/screens/72436_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2018:05:24 13:23:29], baseline, precision 8, 190x190, components 3\012- data
Hash da4f1a1a276a3cba9f2e4c6ced162bed
39747794e91bb5c28bc0c142b9a8b4a41b9c1145
5ff179cb0e8850322ed07d57557b90f06f89cc8bf5c136a39fd55dcd0ae77367
GET /images/screens/72436_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/jpeg
content-length: 41580
last-modified: Mon, 01 Aug 2022 22:55:02 GMT
etag: "62e859c6-a26c"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
54.36.106.111200 OK 4.9 kB URL HTTP/2 mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
IP 54.36.106.111:0
File type PNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data
Hash e7812d5843d1bdde5f676ec192619596
33f68a6af0085917a61ec1a04ab007dbc0036afe
ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/png
content-length: 4885
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
151.101.85.229200 OK 84 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP 151.101.85.229:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (593)
Hash 5df383641efa0a3ba4302c7fec8d6394
f0cec22d20f41110ab644ee246201cb8787379b0
10fb3cdc6d2cbc33aa86bd81a8325449c04d227555a8a9f504deb8cfb0f16e91
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.245.0
x-jsd-version-type: version
etag: W/"33a2f-8LAWo/m1uPKVR6/desBN4giRHHM"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 05 Oct 2022 16:07:10 GMT
age: 24968
x-served-by: cache-fra19157-FRA, cache-bma1641-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 83822
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 9e087139a429adf3d89412a51d4c2136
5384cc87818a00c6f19b5e4880732a97aede29c8
1b2849f7f94c03ded4428d924a6767adec95f634c9ae4bff77419bf8bff565f2
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:10 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "561325E145A7DCD2CCA436CA435B28FE17604411"
Expires: Thu, 06 Oct 2022 03:00:00 GMT
Last-Modified: Wed, 05 Oct 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 468
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a38ab11c0a-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
216.58.207.195200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data
Hash f9f3b19c02acf071e57b965bed8f3b02
3dbfd06b63517d349a70537269e6d4dbe6fcaec5
56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 05:49:50 GMT
expires: Wed, 04 Oct 2023 05:49:50 GMT
cache-control: public, max-age=31536000
age: 123440
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data
Hash 70487f355d22aef7eee8f36bca4d03b8
9ffd6785eeaad33637a9c1be6a0c208f346e134e
d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 18:05:56 GMT
expires: Sun, 01 Oct 2023 18:05:56 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
age: 338474
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydiv.net/tim/design/favicon/favicon-192x192.png
54.36.106.111200 OK 19 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon-192x192.png
IP 54.36.106.111:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 70289d57de1e3d2dffeb3c3a85418a9c
673136d7d97ebfea4e16a65b2c356b2f4e4f6067
b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/png
content-length: 18575
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-488f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/tim/design/favicon/favicon.min.svg
54.36.106.111200 OK 4.5 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon.min.svg
IP 54.36.106.111:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators
Hash de51b957170a46e23a1a3eaf49df0554
e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2
ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-116f"
expires: Fri, 04 Nov 2022 16:07:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google-analytics.com/analytics.js
216.58.211.4200 OK 20 kB URL HTTP/2 google-analytics.com/analytics.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 05 Oct 2022 15:20:37 GMT
expires: Wed, 05 Oct 2022 17:20:37 GMT
cache-control: public, max-age=7200
age: 2793
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4
54.36.106.111200 OK 56 kB URL HTTP/2 mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4
IP 54.36.106.111:0
Hash 2f26b7087d0da037dbd810369434af49
fe9df0d3d4cadf17221af1db5192287fcedec2fa
8ab5bcb03d90d55992b2cb7e578e72aeca9677d9e83350970f6475f0be4328eb
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-121a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 214df2574bd47b2643e53d42d99145fd
84fde59c247f74381e859f495e29b4d937eb43bd
81ac545085d7be5d948073ce7b554a41fdb3fb4ff16d03494d1e9cb725bb8263
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:10 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:10:44 GMT
ETag: "84fde59c247f74381e859f495e29b4d937eb43bd"
Last-Modified: Wed, 05 Oct 2022 13:10:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1030
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a48be11c0a-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 3e84b06e9eb6f3cfbdbb58e71937b3eb
b02f1aee58099cc232a795c61a29c657b2ddad12
e223cb948879bd12fc211a3b6174f031d0a71877b02aec31fc6805d6039de975
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:10 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:24:56 GMT
ETag: "b02f1aee58099cc232a795c61a29c657b2ddad12"
Last-Modified: Wed, 05 Oct 2022 13:24:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 619
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a56d141c0a-OSL
googleads.g.doubleclick.net/pagead/html/r20220928/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220928/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220928/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 04 Oct 2022 23:24:33 GMT
expires: Tue, 18 Oct 2022 23:24:33 GMT
cache-control: public, max-age=1209600
age: 60158
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4
54.36.106.111200 OK 96 kB URL HTTP/2 mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4
IP 54.36.106.111:0
Hash 1290059ee5fed3232d93e0b4b4e74bae
0352858cace9f62d703933583802847df182488a
f116441f60e589b5810adf2da25e5d60529c8c6bfea120cb51b9a8bd319b383d
GET /build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-46126"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 9f7c66207f239e38efce7f623f147c63
e2db3b57cc4d27143cb15b37c5910efe7d88a697
9651fa8403ceac0932b8806afda2976fbd0189754e72a55ab2d2d15a9e53edc6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:11 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:37:51 GMT
ETag: "e2db3b57cc4d27143cb15b37c5910efe7d88a697"
Last-Modified: Wed, 05 Oct 2022 13:37:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a67edb1c0a-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 9f7c66207f239e38efce7f623f147c63
e2db3b57cc4d27143cb15b37c5910efe7d88a697
9651fa8403ceac0932b8806afda2976fbd0189754e72a55ab2d2d15a9e53edc6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:11 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:37:51 GMT
ETag: "e2db3b57cc4d27143cb15b37c5910efe7d88a697"
Last-Modified: Wed, 05 Oct 2022 13:37:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a69eef1c0a-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 9f7c66207f239e38efce7f623f147c63
e2db3b57cc4d27143cb15b37c5910efe7d88a697
9651fa8403ceac0932b8806afda2976fbd0189754e72a55ab2d2d15a9e53edc6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:11 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:37:51 GMT
ETag: "e2db3b57cc4d27143cb15b37c5910efe7d88a697"
Last-Modified: Wed, 05 Oct 2022 13:37:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a69927b500-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 9f7c66207f239e38efce7f623f147c63
e2db3b57cc4d27143cb15b37c5910efe7d88a697
9651fa8403ceac0932b8806afda2976fbd0189754e72a55ab2d2d15a9e53edc6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 05 Oct 2022 16:07:11 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 09 Oct 2022 13:37:51 GMT
ETag: "e2db3b57cc4d27143cb15b37c5910efe7d88a697"
Last-Modified: Wed, 05 Oct 2022 13:37:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755768a69e66b4eb-OSL
yastatic.net/partner-code-bundles/661260/3521127290410543dbe9.js
178.154.131.216200 OK 4.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/661260/3521127290410543dbe9.js
IP 178.154.131.216:0
File type ASCII text, with very long lines (13349)
Hash 8731e2b61687abdcc6826813dc4ef96c
0114fa6f2fdd9e0af1458eb3971f21d575ef1136
82cadb0ed477f825ca6cca4281c64bdaf63cc87813ec8713d8d831161ffc471d
GET /partner-code-bundles/661260/3521127290410543dbe9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 05 Oct 2022 16:07:11 GMT
content-type: text/javascript; charset=utf-8
content-length: 4497
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "8731e2b61687abdcc6826813dc4ef96c"
expires: Fri, 04 Oct 2052 22:42:51 GMT
last-modified: Tue, 04 Oct 2022 12:35:16 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/661260/514bfa338965c20939dd.js
178.154.131.216200 OK 19 kB URL HTTP/2 yastatic.net/partner-code-bundles/661260/514bfa338965c20939dd.js
IP 178.154.131.216:0
File type HTML document, ASCII text, with very long lines (65494)
Hash a40d4aab04292ac79982f8694045964a
fc50ff0afddb39cc439a1dd85cd1979bfa3f51b6
fe37f2011d06a66849975f6d2f925f8c0277f3271f933dc8bf7797d31132b94e
GET /partner-code-bundles/661260/514bfa338965c20939dd.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 05 Oct 2022 16:07:11 GMT
content-type: text/javascript; charset=utf-8
content-length: 18929
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "a40d4aab04292ac79982f8694045964a"
expires: Fri, 04 Oct 2052 22:43:06 GMT
last-modified: Tue, 04 Oct 2022 12:35:16 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
54.36.106.111200 OK 141 kB URL HTTP/2 mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
IP 54.36.106.111:0
Size 141 kB (141134 bytes)
Hash da15b578568f8186bcca1a569ce64b08
631e27876b6f7f5edf3f8b605f138060a8f45e84
2265893ebb91429221c60c428fa51dbe70e136bcb01a2dd438b7dc07c9d5c6af
GET /build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=53aa835c6311bec6d967c881fb28042594ed184b9b09723a2918fb49178b55be; ifh=948767030633dabad83d982.21190098
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 05 Oct 2022 16:07:10 GMT
content-type: text/css
last-modified: Tue, 24 May 2022 08:09:26 GMT
vary: Accept-Encoding
etag: W/"628c92b6-29bae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1706%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A656299714251%3Ahid%3A920866515%3Az%3A0%3Ai%3A20221005160710%3Aet%3A1664986031%3Ac%3A1%3Arn%3A285845739%3Arqn%3A1%3Au%3A166498603169768512%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C86%2C816%2C0%2C527%2C0%2C%2C189%2C2%2C%2C%2C%2C1703%3Ans%3A1664986028844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664986031%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
77.88.21.119302 Found 8.9 kB URL HTTP/2 mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1706%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A656299714251%3Ahid%3A920866515%3Az%3A0%3Ai%3A20221005160710%3Aet%3A1664986031%3Ac%3A1%3Arn%3A285845739%3Arqn%3A1%3Au%3A166498603169768512%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C86%2C816%2C0%2C527%2C0%2C%2C189%2C2%2C%2C%2C%2C1703%3Ans%3A1664986028844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664986031%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 77.88.21.119:0
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1706%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A656299714251%3Ahid%3A920866515%3Az%3A0%3Ai%3A20221005160710%3Aet%3A1664986031%3Ac%3A1%3Arn%3A285845739%3Arqn%3A1%3Au%3A166498603169768512%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C86%2C816%2C0%2C527%2C0%2C%2C189%2C2%2C%2C%2C%2C1703%3Ans%3A1664986028844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664986031%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildvcz5k%3Afp%3A1706%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A656299714251%3Ahid%3A920866515%3Az%3A0%3Ai%3A20221005160710%3Aet%3A1664986031%3Ac%3A1%3Arn%3A285845739%3Arqn%3A1%3Au%3A166498603169768512%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A30%2C86%2C816%2C0%2C527%2C0%2C%2C189%2C2%2C%2C%2C%2C1703%3Ans%3A1664986028844%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664986031%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 05 Oct 2022 16:07:10 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yandexuid=6791666621664986030; Expires=Thu, 05-Oct-2023 16:07:10 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6791666621664986030; Expires=Thu, 05-Oct-2023 16:07:10 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2426819261664986030; Path=/; SameSite=None; Secure
i=AfDCOeiwJJ45qAL2A3D1J6vc/bVHYePqNh415w3kf6urywAHyzfVQurenGKt2Ia3ffJ45ewVzv7tUJ0Md0NqLmjUH9w=; Expires=Sat, 02-Oct-2032 16:07:10 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696522030.yrts.1664986030#1696522030.yrtsi.1664986030; Expires=Thu, 05-Oct-2023 16:07:10 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:10 GMT
last-modified: Wed, 05-Oct-2022 16:07:10 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:11 GMT
access-control-allow-origin: *
etag: "633be002-2b"
expires: Wed, 05 Oct 2022 17:07:11 GMT
accept-ranges: bytes
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=371416463&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1934792955&gjid=74384073&cid=2133447207.1664986031&tid=UA-4459188-1&_gid=1403418076.1664986031&_r=1&_slc=1&z=647331697
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=371416463&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1934792955&gjid=74384073&cid=2133447207.1664986031&tid=UA-4459188-1&_gid=1403418076.1664986031&_r=1&_slc=1&z=647331697
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=371416463&t=pageview&_s=1&dl=https%3A%2F%2Fmydiv.net%2F&ul=en-us&de=UTF-8&dt=%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1934792955&gjid=74384073&cid=2133447207.1664986031&tid=UA-4459188-1&_gid=1403418076.1664986031&_r=1&_slc=1&z=647331697 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://mydiv.net
date: Wed, 05 Oct 2022 16:07:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3022
Expires: Wed, 05 Oct 2022 16:57:33 GMT
Date: Wed, 05 Oct 2022 16:07:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3022
Expires: Wed, 05 Oct 2022 16:57:33 GMT
Date: Wed, 05 Oct 2022 16:07:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3022
Expires: Wed, 05 Oct 2022 16:57:33 GMT
Date: Wed, 05 Oct 2022 16:07:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3022
Expires: Wed, 05 Oct 2022 16:57:33 GMT
Date: Wed, 05 Oct 2022 16:07:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d7d7df8d4c440f9db445c3d99e818d6
612b6dbd4ba895c167964ff7e6d9263013b52b0a
bf527a814c78f9e010cce4ba593c9146d54a2137d1f147f7a6250fbad81956ac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb178720-854c-4c9e-85c1-58cb5419ca69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3585
x-amzn-requestid: ccb6f0c8-4d9b-48b8-aaf6-16781dc4c86b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaHFlEcFoAMFS3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a5223-5c9276c873efee993ba54667;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: T8m1q2L45TWDVRBa-R2W70yq9BauBK3G4IX54AGIxdRhG736T974kg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:05:29 GMT
age: 43302
etag: "612b6dbd4ba895c167964ff7e6d9263013b52b0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3257b782efae9b64e6e18a547866ec50
4daf0c001e86af8477fb097e8ca932edb8e5f981
899f9692e86405aa288d88dd285a6fe26bedab1a2ca4693212476063890b01a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23595c4d-609a-48f3-a52f-e88e478d7653.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5832
x-amzn-requestid: c4427edd-3d71-47d0-a2d3-b3bfed089535
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1FuUoAMFhBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-46ddff150da4141d23fc0d8a;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WWClzLGprno--c75q63i1TFi8oBEdAYW-J4lCk9V8IELQXe6q0A05A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 66277
etag: "4daf0c001e86af8477fb097e8ca932edb8e5f981"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 100559d746bedd7c3802661c875c35ee
5261a6c2ee6d6cc87e91ee82e32d8be234db393e
ff06f31267ddcc9a0d84ddc68932872bfed29d072783c3a1dd3790d41c280aec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78bf691d-76e8-4176-884d-dbc06604dded.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8816
x-amzn-requestid: b9f3ec8a-f478-4405-b275-e21f2d7d89d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKK7gFPJIAMF-7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f1e3-250348e6140f3c74762263ea;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F1ZWwxLKhRC6oSh6gnUxEm5AnYcY-mezJw9mNJ8GmNWnATAKx1JxSg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:42:26 GMT
age: 62685
etag: "5261a6c2ee6d6cc87e91ee82e32d8be234db393e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1de7c17a0ba9295135e7f8b490b6a8d3
70e8d1589f3daf71378965dd197934e220fb6aa4
ee559ce3166479e2b930be7d18525f5c2d164aed8ca005302ddaf3bfe37eec24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5704624d-eb81-4a5b-bcb7-08db5681c677.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8926
x-amzn-requestid: 27fc8976-af8d-40a3-b701-0642fa135ec4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8s1GSbIAMFTiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7eb-4d4c7837576e0fdb5828fe3b;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:38:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzVofPSJC-YVU1Q1V9AnjNeQTa1BQEh6ZiH2HjSeeX5RygysFP7oAA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 21:42:34 GMT
age: 66277
etag: "70e8d1589f3daf71378965dd197934e220fb6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 229c99cfb655a8c9f1a22de69fdff73c
6b5db8fbfb56f083d54b13e7660d0e4bc866aa00
f4099e9153c3dc481add95b0f24dbb8f6d65cc74ad5631d9cb6c6f2a0351843d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8857940-5ca2-44ba-8a66-f396a605d5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7021
x-amzn-requestid: 2e30bdac-360e-4d0a-8bb7-c3144e074abe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zf8ucHb1oAMFjYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ca7f5-18ba6bc50cb32b1e14c882bd;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sd2_YDHr3j7ym7wfFyQh9kg8FP-Et2nJUOo1v_TNbI3PvpzEY5KJ2Q==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 22:07:19 GMT
age: 64792
etag: "6b5db8fbfb56f083d54b13e7660d0e4bc866aa00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 07:29:32 GMT
age: 31059
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b835b5a437ac8178465678803bb979f
fc037d7624b4dcdbb20992045e0abfa80ccaf5eb
6e2438b55d96e61a9effc80d9d3fb435e7fcd9736a1b54c7c1c8681978ecb75c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b835b5a437ac8178465678803bb979f
fc037d7624b4dcdbb20992045e0abfa80ccaf5eb
6e2438b55d96e61a9effc80d9d3fb435e7fcd9736a1b54c7c1c8681978ecb75c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=mydiv.net
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 05 Oct 2022 16:07:11 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=mydiv.net
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mydiv.net
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 05 Oct 2022 16:07:11 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d4c3917173bd92c4b3208cdf2c7c345
726a9aa16eef5844afde825f9faf1b505d31e69b
572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash af1423361d37c5204878438841fbd2c4
9103c586f98e9d422ef1dd4bf0ea7bad3f03d697
2dd0f2face59ffc40651acbae4fd758cba0effc2b3aa1ef2326268eec896ded6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash af1423361d37c5204878438841fbd2c4
9103c586f98e9d422ef1dd4bf0ea7bad3f03d697
2dd0f2face59ffc40651acbae4fd758cba0effc2b3aa1ef2326268eec896ded6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sadbundle/$csp%3Der3$/2727723885389018851/970x250.html
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/sadbundle/$csp%3Der3$/2727723885389018851/970x250.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (512), with CRLF, LF line terminators
Hash 260770ca143e7b0034ab3bc82a318b6b
a90591474f4ed52b794e7f05ee5c2811706f079a
0ed02dd7e3001a013c697c4a008d279bdfd87b0cef574445c577b676ff676e49
GET /sadbundle/$csp%3Der3$/2727723885389018851/970x250.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: default-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; script-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://s0.2mdn.net/ads/studio/cached_libs/ https://storage.googleapis.com/vr-assets-static/test_ads/GMAPlayable/ https://www.gstatic.com/ads/ci/ https://www.gstatic.com/swiffy/; object-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; style-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://fonts.googleapis.com; img-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com blob: data: https://*.ggpht.com https://*.gstatic.cn https://*.gstatic.com https://ajax.googleapis.com/ajax/ https://lh3.googleusercontent.com https://lh4.googleusercontent.com https://lh5.googleusercontent.com https://lh6.googleusercontent.com https://s0.2mdn.net/ads/studio/cached_libs/ https://static.doubleclick.net https://vr.google.com/shaders/w/techspecs/; media-src 'none'; frame-src 'unsafe-inline' javascript:; font-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com data: https://fonts.gstatic.com; connect-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com https://csi.gstatic.com/csi https://fonts.googleapis.com/css https://fonts.googleapis.com/css2 https://vr.google.com/shaders/w/techspecs/; report-uri /pagead/gen_csp?id=adbundle; child-src 'unsafe-inline' javascript:; form-action 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
content-length: 1418
x-content-type-options: nosniff
x-dns-prefetch-control: off
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 12:46:43 GMT
expires: Fri, 29 Sep 2023 12:46:43 GMT
cache-control: public, max-age=31536000
age: 530429
last-modified: Wed, 10 Aug 2022 14:52:05 GMT
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash 126f036451fe7f2fc91dd1114d8daef7
9510b9439d0169421dd29b6493bd15fd21816c5e
76548fed45d196bae3076488e40b3fa7347a25f7d076922ba4d53db5263ce9b2
GET /pagead/js/r20220928/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7559
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:02:13 GMT
expires: Wed, 19 Oct 2022 16:02:13 GMT
cache-control: public, max-age=1209600
etag: 15289875785628835784
content-type: text/javascript; charset=UTF-8
age: 299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220928/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220928/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1624)
Hash 133fde8c1ac7b233618384984b980ae7
ff577b7ec2e43c8eaef430b3875dfd59cf82693c
abe394ea4aaeb29c4a08fbd0c0cd3aea525542d7933325db42d7b85bc9598c44
GET /pagead/js/r20220928/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9561
x-xss-protection: 0
date: Wed, 05 Oct 2022 15:50:21 GMT
expires: Wed, 19 Oct 2022 15:50:21 GMT
cache-control: public, max-age=1209600
etag: 483224313611802536
content-type: text/javascript; charset=UTF-8
age: 1011
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3498)
Hash 7b354b2d53537a9c3a776265a3a784c1
2a2ce345d4fd809c2cd6cfe314d72b44636a6ed8
e2eed64cf33932336db582539484770cc046173b9929c39c41d20de474b3452b
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44883
date: Wed, 05 Oct 2022 16:07:12 GMT
expires: Wed, 05 Oct 2022 16:07:12 GMT
cache-control: private, max-age=3000
etag: "1664796838458510"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.3 kB URL HTTP/2 www.gstatic.com/mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1462)
Hash 229f69a4d55bcd2758013ecc4543088b
6015213bccb29ed4eb62160c8d146e76821caac7
b9db065d054b0db6d427ebc6eaed2873115a9bea45b46a8dfd9b7540e5d01378
GET /mysidia/de17d2874496eb5aa5ae962212bd52f2.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4282
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 06:56:17 GMT
expires: Thu, 29 Dec 2022 06:56:17 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 27 Sep 2022 07:09:55 GMT
content-type: text/javascript
age: 465055
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight
142.250.74.163200 OK 4.3 kB URL HTTP/2 www.gstatic.com/mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1922)
Hash 33641a012f0b03ca692d59cdafe93aa3
92b8cda707a8b7902616d83825964b1b4e1dc215
95a2b4ef7033fecd9cbe1d822749853b5391eed4f96e3a12278fdc714dbde314
GET /mysidia/777fc5017be2667dfa3342e80487738c.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 06:56:17 GMT
expires: Thu, 29 Dec 2022 06:56:17 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 27 Sep 2022 07:09:55 GMT
content-type: text/javascript
age: 465055
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/ads/studio/cached_libs/createjs_2015.11.26_54e1c3722102182bb133912ad4442e19_min.js
142.250.74.70200 OK 49 kB URL HTTP/2 s0.2mdn.net/ads/studio/cached_libs/createjs_2015.11.26_54e1c3722102182bb133912ad4442e19_min.js
IP 142.250.74.70:0
File type ASCII text, with very long lines (32022)
Hash 6edad72b9ea1ae563cf0ef69f366feb7
cc36022c8b029b26e0bbef22c8c52eb0f689bd13
13dc0f83aaae370354618f6ecc7359d5aab9407f0dc3f81dfea2f56fc9a76e9f
GET /ads/studio/cached_libs/createjs_2015.11.26_54e1c3722102182bb133912ad4442e19_min.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 49100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:07:12 GMT
expires: Wed, 05 Oct 2022 16:07:12 GMT
cache-control: public, max-age=0
age: 0
last-modified: Wed, 16 Mar 2016 13:51:35 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f24f49dce99bf22d6f1834c2f702f1f4
5c683d0f6be8cd1a60d95a0cb892007f4363005a
3b3e804ba36f52b1aaad872cd62a8b1f67d59a41c62a68c96d13605103329ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 16:07:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/trackimp/N463808.3493422GOOGLE-GDN/B28373994.343535725;dc_trk_aid=535000127;dc_trk_cid=176484882;ord=865762214;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=;gdpr_consent=;ltd=?
216.58.207.198200 OK 42 B URL HTTP/2 ad.doubleclick.net/ddm/trackimp/N463808.3493422GOOGLE-GDN/B28373994.343535725;dc_trk_aid=535000127;dc_trk_cid=176484882;ord=865762214;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=;gdpr_consent=;ltd=?
IP 216.58.207.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/trackimp/N463808.3493422GOOGLE-GDN/B28373994.343535725;dc_trk_aid=535000127;dc_trk_cid=176484882;ord=865762214;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=;gdpr_consent=;ltd=? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 05 Oct 2022 16:07:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 05-Oct-2022 16:22:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaTveXjNxlg6kocQ4rHNXa1wyYT1a6y7XrDBMj3nh0h5_H1sqspAPDREartFBewAG9RWQ0O24lCzxjUkjdcz6L1W5FfEwg
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaTveXjNxlg6kocQ4rHNXa1wyYT1a6y7XrDBMj3nh0h5_H1sqspAPDREartFBewAG9RWQ0O24lCzxjUkjdcz6L1W5FfEwg
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaTveXjNxlg6kocQ4rHNXa1wyYT1a6y7XrDBMj3nh0h5_H1sqspAPDREartFBewAG9RWQ0O24lCzxjUkjdcz6L1W5FfEwg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 05 Oct 2022 16:07:12 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 15:21:36 GMT
expires: Thu, 05 Oct 2023 15:21:36 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
age: 2736
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678593560&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986034%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986034&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678593560&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986034%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986034&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678593560&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986034%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986034&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 137090
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:14 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:14 GMT
last-modified: Wed, 05-Oct-2022 16:07:14 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=401101648&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=401101648&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=401101648&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160714%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:14 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:14 GMT
last-modified: Wed, 05-Oct-2022 16:07:14 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=590023849&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160715%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=590023849&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160715%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=590023849&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986035%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160715%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986035&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 82
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:15 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:15 GMT
last-modified: Wed, 05-Oct-2022 16:07:15 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wv-check=34002&wv-type=0&wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=442399206&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wv-check=34002&wv-type=0&wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=442399206&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=34002&wv-type=0&wmode=0&wv-part=1&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=442399206&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:18 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:18 GMT
last-modified: Wed, 05-Oct-2022 16:07:18 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=201543070&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=201543070&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=201543070&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:18 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:18 GMT
last-modified: Wed, 05-Oct-2022 16:07:18 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=102753761&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=102753761&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=920866515&page-url=https%3A%2F%2Fmydiv.net%2F&rn=102753761&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1664986038%3Aw%3A1268x939%3Av%3A904%3Az%3A0%3Ai%3A20221005160718%3Au%3A166498603169768512%3Avf%3Aat6op7b9z7b01ildvcz5k%3Awe%3A1%3Ast%3A1664986038&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 05 Oct 2022 16:07:18 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 05-Oct-2022 16:07:18 GMT
last-modified: Wed, 05-Oct-2022 16:07:18 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip
51.75.52.14302 Found 0 B URL HTTP/2 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip
IP 51.75.52.14:0
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtrxh0mkzzzc5odg1s/3fef3/633b0eef81dbf/soft/dfiles/ru/win/ext2fsd/328986/ext2fsd-0.69.1035-09.14.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Wed, 05 Oct 2022 16:07:09 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
yandex.ru/ads/system/context.js
5.255.255.77200 OK 0 B URL HTTP/2 yandex.ru/ads/system/context.js
IP 5.255.255.77:0
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=81tqNrnpk7dA48kP1yzcwVClJGf2NrTt/TI1mrgbLP6m95fQeKOulBXkX1QHKFuNl7DTjI/O2/1d8TMse3ggIvsD0BY=; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Oct-2024 16:07:10 GMT; SameSite=None; Secure; HttpOnly
expires: Wed, 05 Oct 2022 17:07:10 GMT
x-yandex-req-id: 1664986030860889-2703453298681031332-vla1-4632-vla-l7-balancer-8080-BAL-8405
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.10:0
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 05 Oct 2022 16:07:12 GMT
date: Wed, 05 Oct 2022 16:07:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2