s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip
51.75.52.14301 Moved Permanently 185 B URL HTTP/1.1 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip
IP 51.75.52.14:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Fri, 03 Feb 2023 09:13:26 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15353
Expires: Fri, 03 Feb 2023 13:29:19 GMT
Date: Fri, 03 Feb 2023 09:13:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9367
Expires: Fri, 03 Feb 2023 11:49:33 GMT
Date: Fri, 03 Feb 2023 09:13:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 08:43:34 GMT
content-type: application/json
age: 1792
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11402
Expires: Fri, 03 Feb 2023 12:23:28 GMT
Date: Fri, 03 Feb 2023 09:13:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YhtQB2VSEmuGCzr+h1l4QSL7YPLP13BCng8FyjI9mPimBZErpCojgE0jTdM2s12GW/qf15G/Gn8=
x-amz-request-id: JWNSYST5Z185266N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 08:52:20 GMT
age: 1266
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 701752bc6f6beffa46c0218ab5ebb008
85a6c942ef8226178b27a015b180b6560d2a8dc7
69e3c910d7021a37b2258c51bb3a92ba54aad9fe97d37fc65a0871fa53281173
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69E3C910D7021A37B2258C51BB3A92BA54AAD9FE97D37FC65A0871FA53281173"
Last-Modified: Wed, 01 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1385
Expires: Fri, 03 Feb 2023 09:36:31 GMT
Date: Fri, 03 Feb 2023 09:13:26 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 09:13:26 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 08:49:06 GMT
age: 1461
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg
54.36.106.111200 OK 3.3 kB URL HTTP/2 mydiv.net/build/public/images/c141857003053201a2b0239f9c2571a4.svg
IP 54.36.106.111:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3315), with no line terminators
Hash c141857003053201a2b0239f9c2571a4
ed829bb667018790d2256bdb84cbc40e910b890d
f4a8a85124370b95447eb9818a3feb3c646f126cf7abd4f80c80605e38b80a10
GET /build/public/images/c141857003053201a2b0239f9c2571a4.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/svg+xml
content-length: 3315
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-cf3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/uTorrent.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/uTorrent.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash d8b3a7cb134c0c01d8b730eb52efa445
e5f8e04f40a7149aa1be7256634f86cf370ab7af
8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1477
last-modified: Sun, 23 Oct 2022 04:20:19 GMT
etag: "6354c103-5c5"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/BlueStacks.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash de4422d577c482189dfe5966c7362737
473e997d0ded39d3ccb1c54f874576c71cc1405f
ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1438
last-modified: Wed, 01 Feb 2023 20:03:22 GMT
etag: "63dac58a-59e"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Discord.gif
54.36.106.111200 OK 946 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Discord.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 863bd8be9dbe3fc6ea1c2ebe5e17b0f2
0b8090fa9037490c85fa5bc389e9f89a83540862
0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 946
last-modified: Wed, 01 Feb 2023 16:40:37 GMT
etag: "63da9605-3b2"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zoom.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zoom.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f016ef461c4b5d433f2b75874a3fa9f0
84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb
ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1713
last-modified: Fri, 27 Jan 2023 20:17:43 GMT
etag: "63d43167-6b1"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MediaGet.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MediaGet.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash b69d7ccb1c036103aaf41086187b37fa
3cec81950db96a58ac7da7a216777c18f960ce0a
2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1589
last-modified: Wed, 01 Feb 2023 20:26:42 GMT
etag: "63dacb02-635"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Zona.gif
54.36.106.111200 OK 485 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Zona.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash af31d9cab2614849c9f71f67744d5fe3
51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec
885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/WinRAR.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/WinRAR.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash de072b93dbf65068ccfc9a91e722ae90
51e63f9279c737c782e9fce4d1991a2286eb1b65
5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1484
last-modified: Fri, 27 Jan 2023 19:43:39 GMT
etag: "63d4296b-5cc"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/CCleaner.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/CCleaner.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 28ecdadc6ce55c1c52937fe69634148f
53a1e07d37c4f4e940dcf928f071e1e9698cef5c
56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1626
last-modified: Wed, 18 Jan 2023 11:57:52 GMT
etag: "63c7dec0-65a"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Steam.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Steam.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 86c651e4629614e6c3d484025d31ec96
83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033
e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1464
last-modified: Fri, 03 Feb 2023 00:44:21 GMT
etag: "63dc58e5-5b8"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Rufus.gif
54.36.106.111200 OK 860 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Rufus.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 8c927578b093422fe11e609f10c18aca
1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a
13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 860
last-modified: Mon, 28 Nov 2022 17:52:37 GMT
etag: "6384f565-35c"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f31881c998b0af01243f70cb5a1aedfc
56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7
ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1689
last-modified: Thu, 14 Jul 2022 18:06:37 GMT
etag: "62d05b2d-699"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/7-Zip.gif
54.36.106.111200 OK 401 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/7-Zip.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 769824aa176b2636b1640c3d60afb524
655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9
f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 401
last-modified: Sat, 16 Jul 2022 17:26:25 GMT
etag: "62d2f4c1-191"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
54.36.106.111200 OK 929 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 9833effb5dd42a027e756f796ddf4cfe
9e99332744c5484e396a029a9d34bf957dff3f73
2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 929
last-modified: Wed, 01 Feb 2023 21:29:28 GMT
etag: "63dad9b8-3a1"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 475687f8d9f500bd84aff0051af75dc0
747eb724c7cd54c9cc583ec2eb034a04accb7cef
4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1023
last-modified: Fri, 27 Jan 2023 11:01:09 GMT
etag: "63d3aef5-3ff"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
54.36.106.111200 OK 964 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 11c35a7e206514cf071c7ad75efee9a6
946062bc95112ae2b7e73a5e33d0a2884d983e34
bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 964
last-modified: Tue, 18 Oct 2022 23:38:14 GMT
etag: "634f38e6-3c4"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
54.36.106.111200 OK 1.0 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 84cfb69793f19552fdda4e7ff93ff571
b74176c770ae2a5e7591cf0c220c2031394e343a
c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1014
last-modified: Wed, 07 Dec 2022 12:19:20 GMT
etag: "639084c8-3f6"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Nox-App-Player.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Nox-App-Player.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash de28e88d27fecce1a6bcb4f931247a38
7f01810501db369d4a259f7207364458f3bc4dae
83c51e73d962dd7545e6c09555927159d18fec64fed721121a54736037fe2485
GET /images/ru/win/icons/Nox-App-Player.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1392
last-modified: Fri, 03 Feb 2023 00:52:14 GMT
etag: "63dc5abe-570"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Opera-Portable.gif
54.36.106.111200 OK 1.4 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Opera-Portable.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 67f2436af4e4ab8ad0bdd237744657bb
791933c76368f0ac17172209188d7548a42b1f6a
51fce3ffa4bcdd5da2f07d602d71e01789d82f5feeb86ccad6cab64aff54be5a
GET /images/ru/win/icons/Opera-Portable.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1427
last-modified: Fri, 03 Feb 2023 00:49:13 GMT
etag: "63dc5a09-593"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 30a28bdde18ab77d2a85aa6108c42433
f7c1709b7c7614b7d12acd145b751ad051a0eaa8
60b6aa6f1c0b23afb505f652d2985ddbc5418c1a289c5f359f91c34c44688810
GET /images/ru/win/icons/Automatic-Mouse-and-Keyboard.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1493
last-modified: Fri, 03 Feb 2023 00:47:54 GMT
etag: "63dc59ba-5d5"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/vMix.gif
54.36.106.111200 OK 153 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/vMix.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash ec564dc3d34d65aa6e6de5acf6d447c0
1b7954a9d03de2e6e0dcec5573a7fd974bf30123
6ccc68d9c00b421437e89d5713343ad3f071a51eb9bcb1daa8cf62b06cbd36be
GET /images/ru/win/icons/vMix.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 153
last-modified: Fri, 03 Feb 2023 00:46:02 GMT
etag: "63dc594a-99"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/audials-tunebite.gif
54.36.106.111200 OK 891 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/audials-tunebite.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash efafef82a53941a2749151ce2df71b64
72075b812089de64cc4ec0e4a7cd47a50d23a2c9
13e68a4c59a30bc1e154e3c59a76bb52e522616f0918c4c258a16ea2ea1e1d19
GET /images/ru/win/icons/audials-tunebite.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 891
last-modified: Fri, 03 Feb 2023 00:41:35 GMT
etag: "63dc583f-37b"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Radiotracker.gif
54.36.106.111200 OK 1.2 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Radiotracker.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash ffe3b18785294c276e69698b7c9a1b6b
4ca19dd6d831b4602cff051af2b82b0cfcf252a5
37f304e0f59a2c2a4d6c7db0a81237c1df25d8ccebcc76c642ba6b7e299ad5e0
GET /images/ru/win/icons/Radiotracker.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1156
last-modified: Fri, 03 Feb 2023 00:41:08 GMT
etag: "63dc5824-484"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Audials-One.gif
54.36.106.111200 OK 1.1 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Audials-One.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 1310fa702e8560e6e035491f5b8448e5
994f28edd1d2ba8550a1d8996ab616ec4309d1f5
922816e86e6f4b7ea4f6f5cc68627a1bd1b0fc71141b27468b23d0f96de92da2
GET /images/ru/win/icons/Audials-One.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1062
last-modified: Fri, 03 Feb 2023 00:40:20 GMT
etag: "63dc57f4-426"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Music-Collection.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Music-Collection.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 5179c7198f3f94fcfc0e8d45ecd94d9f
ed6075e608c85a8674c113a1ed18eeaaa42dae77
50c203fa9bcae14d1c04080a52065aa585354939fe76f1d8bd2e412df5aead51
GET /images/ru/win/icons/Music-Collection.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1790
last-modified: Fri, 03 Feb 2023 00:37:59 GMT
etag: "63dc5767-6fe"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/PhraseExpress.gif
54.36.106.111200 OK 1.1 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/PhraseExpress.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 8102fedc092ce6bbfbc7123d6ec62eaf
e83e955d41087abddc4ac222eea9358fcfdaabd9
f9ae5ad2569180c85066837c4d62e8e1c59abd31f4ae413330f8d95649c15f82
GET /images/ru/win/icons/PhraseExpress.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1104
last-modified: Fri, 03 Feb 2023 00:36:40 GMT
etag: "63dc5718-450"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RPCS3.gif
54.36.106.111200 OK 448 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RPCS3.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash f117db8c95d5fbba0b493984816c44ff
63540a708eea6a41957b2aa43815d6a6a7b96291
b815842b9407adba0b552eb6ec8604ee27f583d604a038b0be396b6d5482a43f
GET /images/ru/win/icons/RPCS3.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 448
last-modified: Fri, 03 Feb 2023 00:35:08 GMT
etag: "63dc56bc-1c0"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/ReaConverter-Pro.gif
54.36.106.111200 OK 1.5 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/ReaConverter-Pro.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 31\012- data
Hash 1f59cb1ecd647787acd275f404de7893
4c74bd05ee8934176024e497ff7544947ee3f58c
93a00772f862faaae7f5face9c311db9d76b287818e242d503ef8fea08ef97a3
GET /images/ru/win/icons/ReaConverter-Pro.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1505
last-modified: Fri, 03 Feb 2023 00:33:34 GMT
etag: "63dc565e-5e1"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MetaMask.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MetaMask.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash cb08c413ea9fe08be7af7c8c7be8e8c5
c69da52ccd3c0faea43239cf2cb8aa158dec8268
c489614defa31557bd332973ad69aaaeb0a21e9ef66a361189182ee3a40468ac
GET /images/ru/win/icons/MetaMask.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1681
last-modified: Thu, 02 Feb 2023 19:21:11 GMT
etag: "63dc0d27-691"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Lenovo-Vantage.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Lenovo-Vantage.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 906f0557f705ccb9dabe06f96ea59b1c
98508a9f476eca8fa223306960192bfa582b271e
5d79cdd54e68cffb21c4eda7ca436dd50c7f7d9a7148df7ea6bb24ea99ebdabf
GET /images/ru/win/icons/Lenovo-Vantage.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1719
last-modified: Tue, 31 Jan 2023 12:34:57 GMT
etag: "63d90af1-6b7"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/iMyFone-LockWiper.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/iMyFone-LockWiper.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 939c8fadc6e1456474204b8c0203c0d1
243aaf58bc1c7fc7d1e155c6148dfd73f711673c
458d697fc08466306ee9796ec07b8dee2fd7f55a16aaf5fa7a7d84cf36053a31
GET /images/ru/win/icons/iMyFone-LockWiper.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1629
last-modified: Thu, 26 Jan 2023 00:19:35 GMT
etag: "63d1c717-65d"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/BotMeK.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/BotMeK.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 138dce8c5a3ec0362ca2afcd744c3bb2
acdaf9010e1f9798725056e2bd80de2741ad87a6
e187849ab756980332d2f71663a2c53f728a2a523d247f39119a83819558ebe6
GET /images/ru/win/icons/BotMeK.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1766
last-modified: Sun, 29 Jan 2023 19:41:57 GMT
etag: "63d6cc05-6e6"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/MSI-App-Player.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/MSI-App-Player.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 4a10119e665e61e066381e3ff07d88a9
0df59193d8db4edd977efee1982d063868e17c3d
4c2833094169527267e03887a2bf2237b94d34b0e6a3e004278dd561e1db3788
GET /images/ru/win/icons/MSI-App-Player.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1818
last-modified: Fri, 20 Jan 2023 07:16:00 GMT
etag: "63ca3fb0-71a"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Brackets.gif
54.36.106.111200 OK 1.8 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Brackets.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 5b475bdbe3221606747a096b54723806
baec4a0ccfaf8f62d150c3c7862c5c0094fc9322
921a90525592ce0b4a82731b0a593f8e45233157dfd831ff1774a21f106e2f5b
GET /images/ru/win/icons/Brackets.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1753
last-modified: Sun, 15 Jan 2023 09:01:46 GMT
etag: "63c3c0fa-6d9"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/balenaEtcher.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/balenaEtcher.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 2085f8efc46afc96f3ca6af71dac6c20
3d49165890be69028a51fc9da28e19a9b9b8dced
c0c64d516d434a49d3ecedbae5ab327ec5941223c3c5af6906d96265fba0af53
GET /images/ru/win/icons/balenaEtcher.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1706
last-modified: Wed, 25 Jan 2023 19:25:24 GMT
etag: "63d18224-6aa"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8895
Expires: Fri, 03 Feb 2023 11:41:42 GMT
Date: Fri, 03 Feb 2023 09:13:27 GMT
Connection: keep-alive
soft.mydiv.net/images/ru/win/icons/Aorus-Engine.gif
54.36.106.111200 OK 705 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Aorus-Engine.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash ff6ae70efbcf7a60256f6210dfb11aa1
cffd5dfe797cb5e0ac7f22df2484d735b5302caa
0fcf1b65f317c8abff574c897e65c89304612b3148131beb2232a87a24def00f
GET /images/ru/win/icons/Aorus-Engine.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 705
last-modified: Thu, 12 Jan 2023 04:46:08 GMT
etag: "63bf9090-2c1"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/WizTree.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/WizTree.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 3deb7d33547460325d244ba7d0a944e8
fffb17458610680db34d2004095d23dd5d902b0b
f7e7cc5dd91b0679287fb65021d8478c0de6f4091a45f12b5c8210e97adaaf03
GET /images/ru/win/icons/WizTree.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1733
last-modified: Tue, 10 Jan 2023 01:34:47 GMT
etag: "63bcc0b7-6c5"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/RGB-Fusion.gif
54.36.106.111200 OK 1.7 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/RGB-Fusion.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6d8b065b215ef8258196abce2e5ea170
c531162b5deef40904540ccf9c159e237d79c509
112f9e78ea58e24ab1cc174f604a61c223ccf672a2247e2eb23bc02dfc944f9c
GET /images/ru/win/icons/RGB-Fusion.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1676
last-modified: Fri, 06 Jan 2023 04:45:14 GMT
etag: "63b7a75a-68c"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif
54.36.106.111200 OK 1.6 kB URL HTTP/2 soft.mydiv.net/images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 6814e115c43ff8e0d0fed7323db825dc
8c6602c57c16628d552fac610a272ae4dbe3d7fe
438d595f2e53574d716cc6c23b75c4491b67a29c9f8be91ae2337552e3bf096b
GET /images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 1604
last-modified: Sat, 12 Nov 2022 03:30:05 GMT
etag: "636f133d-644"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
soft.mydiv.net/images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif
54.36.106.111200 OK 299 B URL HTTP/2 soft.mydiv.net/images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif
IP 54.36.106.111:0
File type GIF image data, version 87a, 32 x 32\012- data
Hash 7e65ae03815fdcf6c4fb1403822e1216
d0c2650e067fcb4c593449db2714761ff98644e7
7366791c50bf813c932b7e949d2b9155473ecce97868adf47e108294e1e5ad8e
GET /images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/gif
content-length: 299
last-modified: Sat, 12 Nov 2022 02:40:00 GMT
etag: "636f0780-12b"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/4100_small.jpg
54.36.106.111200 OK 17 kB URL HTTP/2 games.mydiv.net/images/screens/4100_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash f9b15de5fe22676d4c9829ad9195b15d
26aeee97c3d3cd198dae620806f1d55b79a226fc
1998d0579ffe07adb18b89614cda227eaba45ae8792487b7aa8278c4ddfaeebc
GET /images/screens/4100_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 16850
last-modified: Wed, 18 Jan 2012 07:16:15 GMT
etag: "4f1671bf-41d2"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/71879_small.jpg
54.36.106.111200 OK 17 kB URL HTTP/2 games.mydiv.net/images/screens/71879_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 405ee08eced5b33bb439a3979e9b3c6a
5f5e9499c4a6bfbdf5d66704d4a663443e5fbb46
c3f5a147c84d13fea3fa5b29e86ceb07808ad5acbf7f265dfd82781583051d1c
GET /images/screens/71879_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 16623
last-modified: Tue, 16 Jun 2020 20:32:11 GMT
etag: "5ee92c4b-40ef"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72645_small.jpg
54.36.106.111200 OK 22 kB URL HTTP/2 games.mydiv.net/images/screens/72645_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 1960d1a1625d0c91e5840e2996739698
029da5e2fa29c1657320ef38dff7d58cbf5f7eb3
111fcd73413769030921fbfef895468c8e669714d8bcc731f9895676685fbd91
GET /images/screens/72645_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 21628
last-modified: Tue, 17 Jan 2023 01:14:54 GMT
etag: "63c5f68e-547c"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72640_small.jpg
54.36.106.111200 OK 20 kB URL HTTP/2 games.mydiv.net/images/screens/72640_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash 0bb4daac57625cc779fb7a4a779d82a1
c9a405671beb14df420f5521e89fd87e70ff0ea6
193dcb104dc5d68d29216c64ee1a9b258d81111b20b32444ca7a849bfee3b276
GET /images/screens/72640_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 19964
last-modified: Sat, 14 Jan 2023 04:03:05 GMT
etag: "63c22979-4dfc"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72635_small.jpg
54.36.106.111200 OK 8.6 kB URL HTTP/2 games.mydiv.net/images/screens/72635_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash c81b354e6de7da0153e3ce30756dfa9d
04555e9d5ba8e8b271cbcf3703bafce90041f362
2ae9f5184ec8d973bcd9ca078588e4885bd88bd069bfd85d9e265270cb7a67d5
GET /images/screens/72635_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 8573
last-modified: Wed, 11 Jan 2023 15:07:52 GMT
etag: "63bed0c8-217d"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72630_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 games.mydiv.net/images/screens/72630_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 07c23aeba1ff6817f68465a5741cf83f
919014488daafeb8f451ac3b7e4ee7f3dd1fd6d4
de1a7cf399742b7d6c345cbfb44bd6077af2a4ffa8a162dd048d57a88bcecd2f
GET /images/screens/72630_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 16448
last-modified: Sat, 31 Dec 2022 11:20:26 GMT
etag: "63b01afa-4040"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72625_small.jpg
54.36.106.111200 OK 19 kB URL HTTP/2 games.mydiv.net/images/screens/72625_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 2b1ff426ead715fece232a0492b36e91
eb50fade5844ff9504516e963d15b47c457048fd
d422673dc5d2f1dfc6d47db211631e00cf333b6959b65c43a51548ecf3b47dce
GET /images/screens/72625_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 19222
last-modified: Fri, 30 Dec 2022 21:44:44 GMT
etag: "63af5bcc-4b16"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/72620_small.jpg
54.36.106.111200 OK 5.4 kB URL HTTP/2 games.mydiv.net/images/screens/72620_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "MobyGames.com", baseline, precision 8, 190x190, components 3\012- data
Hash 5f2dda2bd11f146a35950e2d6b2e69ca
f40af53f00d58fe5ee4f1c73e1864cc9abe0f2b7
aee308a28e20909127274a2ed6e808c9a13fca355255ab7bdd413d0805c66bd7
GET /images/screens/72620_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 5390
last-modified: Fri, 23 Dec 2022 10:44:12 GMT
etag: "63a5867c-150e"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
games.mydiv.net/images/screens/69355_small.jpg
54.36.106.111200 OK 8.7 kB URL HTTP/2 games.mydiv.net/images/screens/69355_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash da504253ef75615ad9551c23b3224ab3
bcf2ff423726b8fc20e47ba37e279d1caf394298
c9f6c74d478b6789721f4f48f6f5172f5c12bbf1c625f208ad0956e8261b4874
GET /images/screens/69355_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 8695
last-modified: Wed, 29 Jan 2014 07:26:01 GMT
etag: "52e8ad09-21f7"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28503_small.jpg
54.36.106.111200 OK 3.9 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28503_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 6bdf5d3f3e850e1b21ab105f2f4f2288
fb5695894e1177d718d473db4415b55ce1c08fde
3f48d4343a6e336b819aed476fa0b6908168824d54a7dce8992417a420dcc2e9
GET /images/arts/ru/screens/28503_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 3920
last-modified: Wed, 01 Feb 2023 10:16:35 GMT
etag: "63da3c03-f50"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/7487_small.jpg
54.36.106.111200 OK 13 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/7487_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 38x38, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash a066367bbfe1a63b4270f84f22b6b500
ffe1a653b109df02c551395886540bb4b084884b
a15d5587fa33b8219b72145ea104f3c61ec2a35e5f34913c7f337389e6dbf086
GET /images/arts/ru/screens/7487_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 12661
last-modified: Sat, 17 Nov 2012 13:50:17 GMT
etag: "50a79619-3175"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28490_small.jpg
54.36.106.111200 OK 13 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28490_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 694f97713a7546d460dbbfed09a03c3b
c0394726932a448d1c8c4ee8341e8796a1f33535
a4cbcd590323ec0299b3855861fb054a7b69cbf59c769af05f2f2cb6b4faff22
GET /images/arts/ru/screens/28490_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 12769
last-modified: Sat, 28 Jan 2023 21:30:29 GMT
etag: "63d593f5-31e1"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/8306_small.jpg
54.36.106.111200 OK 29 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/8306_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash d360dc00bf85021a6a9fbb24e5a11cee
23e10a6e0ead21308395fe37fa128ae1d57739af
36bd15852301c9373ee783ffa968effc9e6d39281af81c214807f6b9cfe3fbf9
GET /images/arts/ru/screens/8306_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 28944
last-modified: Fri, 28 Aug 2015 11:48:48 GMT
etag: "55e04aa0-7110"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28480_small.jpg
54.36.106.111200 OK 5.1 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28480_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash b6a0a7d1686be1ede4d363e2d8724cc5
59cc8020390eb58c1d1c4970d31a3aa407b3eaaa
091792468a237426615ae44dd555ccd4c58868c104cd8776e25e028a047ec220
GET /images/arts/ru/screens/28480_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 5086
last-modified: Thu, 26 Jan 2023 07:52:34 GMT
etag: "63d23142-13de"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28479_small.jpg
54.36.106.111200 OK 10 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28479_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash 9cd84a0fd89b3bb0a23e4317f1eddb98
2df236e47e4bb0d4008a54816d2067bd398f7088
59cb72971706cf45893f090902225f4c8450f6c9213598e7dedc1f132f9c866c
GET /images/arts/ru/screens/28479_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 10217
last-modified: Fri, 20 Jan 2023 12:08:43 GMT
etag: "63ca844b-27e9"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28477_small.jpg
54.36.106.111200 OK 16 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28477_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data
Hash b4de4e3729587a8bfea9db8dd0f4c857
387d0d1748af852d943b50afd6385deb24c1691b
0d76f732ca9e3edddeda13e6e2fe55e6e763f926167c7d91ae3c79690ef65536
GET /images/arts/ru/screens/28477_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 15556
last-modified: Fri, 13 Jan 2023 01:49:54 GMT
etag: "63c0b8c2-3cc4"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash a472985186eae73abe8ac7daedfea411
9987394f46506e694ff6a2889788e18777e7d7a6
a67a467ae5ce1854a69acc958502fcef9bbf999c93ad2f0ba5689d3620a00f75
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5616
Cache-Control: max-age=121852
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Etag: "63dbf343-118"
Expires: Sat, 04 Feb 2023 19:04:19 GMT
Last-Modified: Thu, 02 Feb 2023 17:30:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
mydiv.net/images/arts/ru/screens/28474_small.jpg
54.36.106.111200 OK 7.4 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28474_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 190x190, components 3\012- data
Hash 2af54ab80f6affe610ba45d44387d278
d9c7a0e5a0a078fe3af5265ed5ba4558e85ed532
fed64ef7fdcf7567324ba3cda02c08d8fec73df525bdffc43e999bc44a7265ae
GET /images/arts/ru/screens/28474_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 7402
last-modified: Tue, 10 Jan 2023 11:28:25 GMT
etag: "63bd4bd9-1cea"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28473_small.jpg
54.36.106.111200 OK 9.9 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28473_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash dcb66ca2a3cbbe6add96f76687ace21c
14666535c0a3e58376b4e9e39c0c3e97790fc4b2
4b41fbdb044163fa111d2beffa99e233e015497ffa2e5e4cda4fc769a0e0bbce
GET /images/arts/ru/screens/28473_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 9944
last-modified: Wed, 28 Dec 2022 12:32:04 GMT
etag: "63ac3744-26d8"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/images/arts/ru/screens/28471_small.jpg
54.36.106.111200 OK 3.9 kB URL HTTP/2 mydiv.net/images/arts/ru/screens/28471_small.jpg
IP 54.36.106.111:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data
Hash e7e260581e8c3ad95904d8a412d02016
c65e3a709056703eed2f931714178d0b38c7fb6f
383568878c0a4be64b20bdc357d496f439dec592be48bfdb974007daccc33398
GET /images/arts/ru/screens/28471_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/jpeg
content-length: 3910
last-modified: Wed, 21 Dec 2022 12:41:53 GMT
etag: "63a2ff11-f46"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
54.36.106.111200 OK 1.8 kB URL HTTP/2 mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png
IP 54.36.106.111:0
File type PNG image data, 117 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash c539cc4109c4ed80ec05cb5812112d1c
e54ad527d32113957d3c6fbc42f5dee7cf2a15f5
3abcf0a2a296461fb1cf4584d08a2a9afdbd0c0861a7211ab6f53fc64f8fe83a
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/png
content-length: 1770
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
54.36.106.111200 OK 4.9 kB URL HTTP/2 mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png
IP 54.36.106.111:0
File type PNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data
Hash e7812d5843d1bdde5f676ec192619596
33f68a6af0085917a61ec1a04ab007dbc0036afe
ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=e802211c2f3185f6ecab
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/png
content-length: 4885
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data
Hash 70487f355d22aef7eee8f36bca4d03b8
9ffd6785eeaad33637a9c1be6a0c208f346e134e
d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:06:49 GMT
expires: Fri, 02 Feb 2024 01:06:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
age: 115598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
142.250.74.35200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data
Hash f9f3b19c02acf071e57b965bed8f3b02
3dbfd06b63517d349a70537269e6d4dbe6fcaec5
56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:07:02 GMT
expires: Sat, 03 Feb 2024 02:07:02 GMT
cache-control: public, max-age=31536000
age: 25585
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydiv.net/tim/design/favicon/favicon-192x192.png
54.36.106.111200 OK 19 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon-192x192.png
IP 54.36.106.111:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 70289d57de1e3d2dffeb3c3a85418a9c
673136d7d97ebfea4e16a65b2c356b2f4e4f6067
b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/png
content-length: 18575
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-488f"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
mydiv.net/tim/design/favicon/favicon.min.svg
54.36.106.111200 OK 4.5 kB URL HTTP/2 mydiv.net/tim/design/favicon/favicon.min.svg
IP 54.36.106.111:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators
Hash de51b957170a46e23a1a3eaf49df0554
e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2
ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Sat, 14 Jan 2023 15:52:12 GMT
etag: "63c2cfac-116f"
expires: Sun, 05 Mar 2023 09:13:27 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google-analytics.com/analytics.js
142.250.74.36200 OK 20 kB URL HTTP/2 google-analytics.com/analytics.js
IP 142.250.74.36:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 08:54:00 GMT
expires: Fri, 03 Feb 2023 10:54:00 GMT
cache-control: public, max-age=7200
age: 1167
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 193314ea4c0055222a530df5ef1778b1
517a9a37080b60b77d2b9a2e767db520191d2b05
333de4d63f641ffb88141cf9640d793f31073fe4ef1645b221105b8850cba39a
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:54:30 GMT
ETag: "517a9a37080b60b77d2b9a2e767db520191d2b05"
Last-Modified: Fri, 03 Feb 2023 07:54:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 727
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfc7afab512-OSL
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.98200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (3649)
Hash f9afa416401c06b2fc34fa871b817f98
949afaa1b03189cb0902c10faf352d23038fc02e
8dff81e5e7a4e7f772e94045d043d216da927cf0ded1cfc6c9b425c470651397
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 03 Feb 2023 09:13:27 GMT
expires: Fri, 03 Feb 2023 09:13:27 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12069532586842744497
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50009
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.200.117.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.117.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +S8XijvDVGPl6bvyBYYIQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Yu0JfyjIiZ1F2Irj5THFXxEtcuM=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash d8cc0897e9c0404ff5b04f84658a40de
8d21ddd008654a4cfef8b4ce37b2e4c1683069cf
491c4e7dfb6e7ae23661ebefd9608389d9b91f48e791956db201751118c0e5e4
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:14:05 GMT
ETag: "8d21ddd008654a4cfef8b4ce37b2e4c1683069cf"
Last-Modified: Fri, 03 Feb 2023 07:14:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 250
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfdacb1b512-OSL
googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
172.217.21.162200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230201/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 15:45:14 GMT
expires: Thu, 16 Feb 2023 15:45:14 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 62894
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
77.88.21.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 5fe7b0a67b66f65dcbc7b07797592747
1f838e2ddd35805ce8a958171d6a316e1c53f49b
9ede12c7e3d60f1387a9c549981ca91ca2314f47a53e459258e5b98f13c18431
GET /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Referer: https://mydiv.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Fri, 03 Feb 2023 09:13:28 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:28 GMT
last-modified: Fri, 03-Feb-2023 09:13:28 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 4cd969447f161c9648ba7f53c1c62da7
048f4021c06928c8c2561f43608df45e87ca715f
903545b1c7c0d34c568c2fd2ce812085e0d57b02d6f7e5e1c15980242316ac14
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:43:31 GMT
ETag: "048f4021c06928c8c2561f43608df45e87ca715f"
Last-Modified: Fri, 03 Feb 2023 07:43:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1587
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfe3d65b512-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 4cd969447f161c9648ba7f53c1c62da7
048f4021c06928c8c2561f43608df45e87ca715f
903545b1c7c0d34c568c2fd2ce812085e0d57b02d6f7e5e1c15980242316ac14
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:43:31 GMT
ETag: "048f4021c06928c8c2561f43608df45e87ca715f"
Last-Modified: Fri, 03 Feb 2023 07:43:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1587
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfe5d77b512-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 4cd969447f161c9648ba7f53c1c62da7
048f4021c06928c8c2561f43608df45e87ca715f
903545b1c7c0d34c568c2fd2ce812085e0d57b02d6f7e5e1c15980242316ac14
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:43:31 GMT
ETag: "048f4021c06928c8c2561f43608df45e87ca715f"
Last-Modified: Fri, 03 Feb 2023 07:43:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1587
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfe5e57b521-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 4cd969447f161c9648ba7f53c1c62da7
048f4021c06928c8c2561f43608df45e87ca715f
903545b1c7c0d34c568c2fd2ce812085e0d57b02d6f7e5e1c15980242316ac14
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:43:31 GMT
ETag: "048f4021c06928c8c2561f43608df45e87ca715f"
Last-Modified: Fri, 03 Feb 2023 07:43:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1587
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfe5aeeb524-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 4cd969447f161c9648ba7f53c1c62da7
048f4021c06928c8c2561f43608df45e87ca715f
903545b1c7c0d34c568c2fd2ce812085e0d57b02d6f7e5e1c15980242316ac14
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 09:13:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 07 Feb 2023 07:43:31 GMT
ETag: "048f4021c06928c8c2561f43608df45e87ca715f"
Last-Modified: Fri, 03 Feb 2023 07:43:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1587
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793a0cfe5b09b529-OSL
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
178.154.131.217200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP 178.154.131.217:0
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Sat, 03 Feb 2024 14:57:42 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 573099cc0bb481e2
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/715550/30a9db08b6192909b210.js
178.154.131.217200 OK 113 kB URL HTTP/2 yastatic.net/partner-code-bundles/715550/30a9db08b6192909b210.js
IP 178.154.131.217:0
File type ASCII text, with very long lines (65497)
Size 113 kB (113360 bytes)
Hash 34cade08df67afcd01973f96861ef653
6c57956b7c40ba34113cd02983cdca4eb894fa86
8819140577731758afb0dfdd9e5c78979d1e92047e8b5bb7b687691a4869ab6b
GET /partner-code-bundles/715550/30a9db08b6192909b210.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 113360
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "34cade08df67afcd01973f96861ef653"
expires: Sun, 02 Feb 2053 15:46:40 GMT
last-modified: Thu, 02 Feb 2023 01:42:18 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/715550/1c0942547d39e10f5f56.js
178.154.131.217200 OK 4.8 kB URL HTTP/2 yastatic.net/partner-code-bundles/715550/1c0942547d39e10f5f56.js
IP 178.154.131.217:0
File type ASCII text, with very long lines (14344)
Hash 0770de17be3c276fd8fec7289852a216
95eef150bda0529feea1e61b70213cec4f4d89bb
bae77e6571aee2a707e94a4c0b4a86e8f2b30ef0932ad793740356e3a3b52701
GET /partner-code-bundles/715550/1c0942547d39e10f5f56.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 4802
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0770de17be3c276fd8fec7289852a216"
expires: Sun, 02 Feb 2053 15:46:40 GMT
last-modified: Thu, 02 Feb 2023 01:42:18 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/715550/9bb679a1b415bea90683.js
178.154.131.217200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/715550/9bb679a1b415bea90683.js
IP 178.154.131.217:0
File type ASCII text, with very long lines (65494)
Hash 1cbf33f15a9fd0c64e9411dd22526298
683d4738b6bba75f60fe4a9970e3e838cb6e8466
ff55e9a410a2d6f18d8a449a83131a4bff005a5d9b84e892f66ceba8840979d4
GET /partner-code-bundles/715550/9bb679a1b415bea90683.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 23498
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "1cbf33f15a9fd0c64e9411dd22526298"
expires: Sun, 02 Feb 2053 15:46:40 GMT
last-modified: Thu, 02 Feb 2023 01:42:19 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/715550/2ec9a88e40a26b53acde.js
178.154.131.217200 OK 2.1 kB URL HTTP/2 yastatic.net/partner-code-bundles/715550/2ec9a88e40a26b53acde.js
IP 178.154.131.217:0
File type ASCII text, with very long lines (6989)
Hash 01917157b04e20502080bab26ce90732
6488c8521d63d448c9491afeb0a5e4ab04ebc159
adc713a831ff71532316ba178ef5d2a3f73756e21f90f9b9e082fe7e1bdc153c
GET /partner-code-bundles/715550/2ec9a88e40a26b53acde.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 2065
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "01917157b04e20502080bab26ce90732"
expires: Sun, 02 Feb 2053 15:46:40 GMT
last-modified: Thu, 02 Feb 2023 01:42:18 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/715550/07cea2bf8567304efc16.js
178.154.131.217200 OK 7.9 kB URL HTTP/2 yastatic.net/partner-code-bundles/715550/07cea2bf8567304efc16.js
IP 178.154.131.217:0
File type ASCII text, with very long lines (23593)
Hash 6047cce674e92f49e1725d6b8381cd55
1ed609735fb5cf58945f20924b510ff3c3fe4eff
7ee78e9850df381d307fc982fc025c609f3ffedb8d7a99e5c954fa5dc3ae8609
GET /partner-code-bundles/715550/07cea2bf8567304efc16.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 03 Feb 2023 09:13:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 7931
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "6047cce674e92f49e1725d6b8381cd55"
expires: Sun, 02 Feb 2053 15:46:40 GMT
last-modified: Thu, 02 Feb 2023 01:42:18 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:28 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Fri, 03 Feb 2023 10:13:28 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 2 B URL HTTP/2 mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1142%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1216268170006%3Ahid%3A760456568%3Az%3A0%3Ai%3A20230203091358%3Aet%3A1675415638%3Ac%3A1%3Arn%3A937172591%3Arqn%3A1%3Au%3A1675415638245767541%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C86%2C176%2C1%2C545%2C0%2C%2C250%2C4%2C%2C%2C%2C1128%3Aco%3A0%3Ans%3A1675415636626%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675415638%3At%3A%D0%9B%D1%83%D1%87%D1%88%D0%B8%D0%B5%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%2C%20%D0%B4%D1%80%D0%B0%D0%B9%D0%B2%D0%B5%D1%80%D1%8B%20%D0%B8%20%D0%B8%D0%B3%D1%80%D1%8B%20-%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%2C%20iOS%20%D0%B8%20MacOS&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Fri, 03 Feb 2023 09:13:27 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yabs-sid=1141780391675415607; Path=/; SameSite=None; Secure
i=NfrZwvybGmTBa4W4krKVSiwUrHAQJqQI+G5oVYTo1blV1hIVmHdGmfzQ1lxklKgmb8vkhKMAsPWP/K5PKDam5mAiPuc=; Expires=Mon, 31-Jan-2033 09:13:26 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2129120041675415607; Expires=Sat, 03-Feb-2024 09:13:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2129120041675415607; Expires=Sat, 03-Feb-2024 09:13:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706951607.yc.1675415607#1706951607.yrts.1675415607#1706951607.yrtsi.1675415607; Expires=Sat, 03-Feb-2024 09:13:27 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:27 GMT
last-modified: Fri, 03-Feb-2023 09:13:27 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yandex.ru/ads/system/context.js
77.88.55.77200 OK 83 kB URL HTTP/2 yandex.ru/ads/system/context.js
IP 77.88.55.77:0
File type ASCII text, with very long lines (65492)
Hash 8ca47cefadf15b5c4624ec84008219e1
674bb7c743d334516c85e3818e5f111c1ad4fa5a
ee1e399808930ea6f90e38b6a15198eeba226a0c0ea2e0c8e676586d4873d93b
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=esO/2ouc3PJgNnfhmAKSb+f0XcPoYW8+0NojSjuy2FK/ZS2udFTOgqTZK4uwau6pjqxNbC3YYodYocrOAjSA7Si9ll0=; Expires=Sun, 02-Feb-2025 09:13:27 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=9898814751675415607; Path=/; Domain=.yandex.ru; Expires=Sat, 03 Feb 2024 09:13:27 GMT; SameSite=None; Secure; HttpOnly
expires: Fri, 03 Feb 2023 10:13:27 GMT
x-yandex-req-id: 1675415607788722-5566406848835376165-sas2-0307-sas-l7-balancer-8080-BAL-9831
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ead5df3e30e38bb1a739ababb3292302
b5986cff7222999bf19e360ced4a445a2202c82c
768a8260af372a1ca06f826c3a3f84b6bc4523130134b32998baf75b64d7de4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=mydiv.net
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 09:13:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mydiv.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 09:13:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
216.58.207.193200 OK 9.0 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/abg_lite_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1672)
Hash 9aa683d616d8b2d10fe0100d761df816
60f84308b40072edcc24b6fd54c68247786001aa
2e8549a4bc0e1f4a4eda2637f239105e780b2ae2879c9a241b1ffe7130386e0a
GET /pagead/js/r20230201/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8993
x-xss-protection: 0
date: Thu, 02 Feb 2023 19:49:13 GMT
expires: Thu, 16 Feb 2023 19:49:13 GMT
cache-control: public, max-age=1209600
age: 48255
etag: 12355142264901698679
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
216.58.207.193200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1605)
Hash aeaebc4fec11dcafa566897f3b2aa937
7b4507c8793c1ce833dccaeb7dbc956c1fd06668
c23b4a16d9468c0018f502492594408fc809fc0fe003aed2f1145ba3dca87bae
GET /pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7647
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:43:53 GMT
expires: Thu, 16 Feb 2023 21:43:53 GMT
cache-control: public, max-age=1209600
age: 41375
etag: 2161395064574532456
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3504)
Hash 40b8ffdc606e81703c5f6a39df96f373
0a39b905fe6b8f947d256b01614abcdd27baef65
93cfc3bdb53008e8640dee5f3e7515b10a9b2959e69d8f2919f3d243cf547f36
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49146
date: Fri, 03 Feb 2023 09:13:28 GMT
expires: Fri, 03 Feb 2023 09:13:28 GMT
cache-control: private, max-age=3000
etag: "1675254965429469"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
216.58.211.4302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 216.58.211.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 09:13:29 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 09:13:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 09:13:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 09:13:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 09:13:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9651
Expires: Fri, 03 Feb 2023 11:54:20 GMT
Date: Fri, 03 Feb 2023 09:13:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 1350cdd1-10c2-44e0-993d-2335a082fb91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fstgNH0moAMF3OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db5c67-02211c3d5ca147c718348860;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 06:47:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t7OYoLCzzQakW2lqiAUaeKA00Beq4J5elQ5qF7yGUb2L7JSNUJCPNA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 05:40:54 GMT
age: 12755
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02123eef9faa8560ff66b058d4e13a28
decf26282993d7f0b14cf4112d14fa39c97fa89f
28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9130
x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuxiYEkqIAMFVZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:17 GMT
age: 40092
etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 38679
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703c7834618fd34f3d7ce5c82a51abc0
4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c
1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AnMRlC-rgJLk6OwzHDFeaGBuDfEuRj_n0S2o1o7QSTZqMwCIr-20-A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:35 GMT
age: 41214
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: p74tt3doRE9DKoD5cpPKriYPFEQhq7f3Xf8vhgNNz7QhZNIvdc6NQQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:18 GMT
age: 40091
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 2df5779a-a808-46ec-9246-1a9b9bddd9e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmKLVHwroAMF72Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd7b-3cfe97e07d17958836425784;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _VFg0FMYa1Dg55fLpJTwdX2uZXkYjZSFdbdAKqGQu7GF2dPiawKh1g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 05:59:16 GMT
age: 11653
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.74200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.74:0
Hash 119e035e3471cc1852f9c22f2411d364
f13b22cc34e5b3e996fefb92dcd6db3c21cabc75
a0d39745aa65afdad1c10d0fd39e9ad9f5fa7a4918b35c400b3ccb0a3b7fcf2f
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 09:13:29 GMT
date: Fri, 03 Feb 2023 09:13:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=mydiv.net
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=mydiv.net
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 09:13:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=480874599&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415641%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415641&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=480874599&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415641%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415641&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=480874599&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415641%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415641&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 140691
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:31 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:31 GMT
last-modified: Fri, 03-Feb-2023 09:13:31 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=688143236&wv-type=3&browser-info=we%3A1%3Aet%3A1675415642%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415642&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=688143236&wv-type=3&browser-info=we%3A1%3Aet%3A1675415642%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415642&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=688143236&wv-type=3&browser-info=we%3A1%3Aet%3A1675415642%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091401%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415642&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:31 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:31 GMT
last-modified: Fri, 03-Feb-2023 09:13:31 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=939075055&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415643%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091402%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415643&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=939075055&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415643%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091402%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415643&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=939075055&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415643%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091402%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415643&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 82
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:32 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:32 GMT
last-modified: Fri, 03-Feb-2023 09:13:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=731307524&wv-type=3&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=731307524&wv-type=3&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=731307524&wv-type=3&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:35 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:35 GMT
last-modified: Fri, 03-Feb-2023 09:13:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wv-check=44451&wv-type=0&wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=750425346&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wv-check=44451&wv-type=0&wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=750425346&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=44451&wv-type=0&wmode=0&wv-part=1&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=750425346&browser-info=we%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:35 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:35 GMT
last-modified: Fri, 03-Feb-2023 09:13:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=659185633&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=659185633&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=760456568&page-url=https%3A%2F%2Fmydiv.net%2F&rn=659185633&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675415646%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230203091405%3Au%3A1675415638245767541%3Avf%3A14qzoz81s4a176hik6jd9j%3Ast%3A1675415646&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 03 Feb 2023 09:13:35 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 03-Feb-2023 09:13:35 GMT
last-modified: Fri, 03-Feb-2023 09:13:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip
51.75.52.14302 Found 0 B URL HTTP/2 s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip
IP 51.75.52.14:0
Analyzer Verdict Alert fortinet Malware
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtu2ltcgxlvfyuahrtba==/33c06/61bd5d7b6e04c/soft/dfiles/ru/win/simpletv/341303/tvplaylists_20170427.zip HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Fri, 03 Feb 2023 09:13:26 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
mydiv.net/build/public/styles/site.mydiv.css?ver=e802211c2f3185f6ecab
54.36.106.111200 OK 0 B URL HTTP/2 mydiv.net/build/public/styles/site.mydiv.css?ver=e802211c2f3185f6ecab
IP 54.36.106.111:0
GET /build/public/styles/site.mydiv.css?ver=e802211c2f3185f6ecab HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:39:04 GMT
vary: Accept-Encoding
etag: W/"63dc3b88-2759f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
104.16.86.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP 104.16.86.20:0
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.257.0
x-jsd-version-type: version
etag: W/"34e3a-eIUrj6hD3pmnKAQZCp7YaNtM0Rc"
x-served-by: cache-fra-eddf8230060-FRA, cache-yyz4554-YYZ
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 26342
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qQjhlP%2FyMAk%2FouRgIFlUOwViCwSpqvb123eQbTd2B4OiN8PdIIFR39w5M6gaa1y3H1mX8pij1LP61vjLEfLIxSUb%2FH37ResmQh3GDoDi1KRSQfjZhYsAx5DZI4clxLiTSyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793a0cfb7c570b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 0 B IP 93.184.220.29:0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5616
Cache-Control: max-age=121852
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:13:27 GMT
Etag: "63dbf343-118"
Expires: Sat, 04 Feb 2023 19:04:19 GMT
Last-Modified: Thu, 02 Feb 2023 17:30:43 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280
mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=d2a67168164b5da8a051
54.36.106.111200 OK 0 B URL HTTP/2 mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=d2a67168164b5da8a051
IP 54.36.106.111:0
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=d2a67168164b5da8a051 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Feb 2023 22:39:04 GMT
vary: Accept-Encoding
etag: W/"63dc3b88-1202"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
mydiv.net/build/public/site.mydiv.bundle.js?ver=e802211c2f3185f6ecab
54.36.106.111200 OK 0 B URL HTTP/2 mydiv.net/build/public/site.mydiv.bundle.js?ver=e802211c2f3185f6ecab
IP 54.36.106.111:0
GET /build/public/site.mydiv.bundle.js?ver=e802211c2f3185f6ecab HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=01bc7f1a6e7b897d8977b5c3c7c3f0f598d5cb1ed47bd576688eb35a36e78801; ifh=18465347763dcd037284eb7.80385930
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Fri, 03 Feb 2023 09:13:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 02 Feb 2023 22:39:04 GMT
vary: Accept-Encoding
etag: W/"63dc3b88-45ddc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
0 B URL yastatic.net/safeframe-bundles/0.83/host.js
IP :0
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site