gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
185.178.208.130301 Moved Permanently 568 B URL HTTP/1.1 gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
IP 185.178.208.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators
Hash 2761b98db33884ab29711096ab315edb
8cea6e53464aea178b72e06a906205d040f14ca5
9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
GET /comedia-gamberra/ver-21-and-over-2013-online/ HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Sat, 17 Dec 2022 05:12:38 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Content-Type: text/html; charset=utf8
Content-Length: 568
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae86164fd9297dfdc05d67d69284d70e
5e5f27e3fd492f715baa6820f05c0fafde4040b3
be20f6ae6a51d20611cb4d350b52a5d0a339af6722fe9b2482ef58826c1e9de0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE20F6AE6A51D20611CB4D350B52A5D0A339AF6722FE9B2482EF58826C1E9DE0"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18860
Expires: Sat, 17 Dec 2022 10:26:58 GMT
Date: Sat, 17 Dec 2022 05:12:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9150
Expires: Sat, 17 Dec 2022 07:45:08 GMT
Date: Sat, 17 Dec 2022 05:12:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 17 Dec 2022 04:34:09 GMT
content-type: application/json
age: 2309
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9146
Expires: Sat, 17 Dec 2022 07:45:04 GMT
Date: Sat, 17 Dec 2022 05:12:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZSQ2MN+IT7h6GxwzcznKM2RYJ2CkCc72KDMe8wBSk5rI1Ke95Z5Vh0b9Gc5WK+qtxqVUC9C1Izs=
x-amz-request-id: 5DD94KH9HS3NV4XX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 17 Dec 2022 04:53:31 GMT
age: 1147
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:38 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5acdf6eecfb3dac4ca6072e6d6f3f1c0
fc66853a06ffeddd789cc9fdf7322eb4929aae81
65a16967a63d74f766da4b4d9409ec435a8c13f000bb884c22753a0c34da073f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65A16967A63D74F766DA4B4D9409EC435A8C13F000BB884C22753A0C34DA073F"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18277
Expires: Sat, 17 Dec 2022 10:17:16 GMT
Date: Sat, 17 Dec 2022 05:12:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 17 Dec 2022 04:33:23 GMT
age: 2356
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
185.178.208.130200 OK 32 kB URL HTTP/2 gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
IP 185.178.208.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (48788)
Hash 59aab5f6c2917c43abde85eda3c35a95
a2f9761462e84289ccb128403d1e24326a825a87
d0760bf4fc19fd38aab7caf5f5d180d57a23ed2061d839a7e1ed045a28b2b524
GET /comedia-gamberra/ver-21-and-over-2013-online/ HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=dpP811KSj5J0jfqJbBH3; Domain=.gnula.nu; HttpOnly; Path=/; Expires=Sun, 17-Dec-2023 05:12:39 GMT
date: Sat, 17 Dec 2022 05:12:39 GMT
content-type: text/html; charset=UTF-8
content-length: 31951
link: <https://gnula.nu/wp-json/>; rel="https://api.w.org/", <https://gnula.nu/wp-json/wp/v2/posts/8573>; rel="alternate"; type="application/json", <https://gnula.nu/?p=8573>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 142400be99b933ea5e0c68ea6a6b3e89
80e94132940e5ebe69dd0a03396764127b8fda49
20e8cde3c6907a3c5d97fe9fbcf6a44035e1f7482f7e166adb2c38a30a9084ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6593
Cache-Control: max-age=107046
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Etag: "639c352c-1d7"
Expires: Sun, 18 Dec 2022 10:56:45 GMT
Last-Modified: Fri, 16 Dec 2022 09:06:52 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
gnula.nu/wp-includes/css/dist/block-library/style.min.css
185.178.208.130200 OK 8.9 kB URL HTTP/2 gnula.nu/wp-includes/css/dist/block-library/style.min.css
IP 185.178.208.130:0
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash c787c06ec6de64a26274c2335677bf93
61d65d871722227622a19026f4c546ec1819df14
3689099f7cfc2d806fe0660c9c031d1bffbd642b9c7c3f278192055c901dbdab
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 15:04:20 GMT
content-type: text/css
last-modified: Wed, 14 Jul 2021 22:04:26 GMT
cache-control: max-age=604800
content-encoding: gzip
content-length: 8930
ddg-cache-status: HIT,HIT
etag: W/"60ef5f6a-e33b"
expires: Sat, 17 Dec 2022 22:42:58 GMT
age: 223699
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/style.css
185.178.208.130200 OK 6.2 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/style.css
IP 185.178.208.130:0
File type Unicode text, UTF-8 text, with very long lines (1067)
Hash 523060523e8538a5ce44511e3f6857f0
dfd9a769e7f8cbc18799af4180ce662570e5b51f
4295c27a0291af314f33273ae7a76d13b3556bb29e50d49cd7925169223fb8ba
GET /wp-content/themes/charcoal2/style.css HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 15:32:19 GMT
content-type: text/css
last-modified: Sun, 21 Feb 2021 22:32:04 GMT
cache-control: max-age=604800
content-encoding: gzip
content-length: 6165
ddg-cache-status: HIT,HIT
etag: W/"6032df64-9af4"
expires: Sat, 17 Dec 2022 22:54:09 GMT
age: 222020
X-Firefox-Spdy: h2
gnula.nu/wp-content/plugins/akismet/_inc/form.js
185.178.208.130200 OK 318 B URL HTTP/2 gnula.nu/wp-content/plugins/akismet/_inc/form.js
IP 185.178.208.130:0
Hash 9981fd8493ac6b5c99634815c9aef030
15e922eda1c62a37bce0aea182535530889a044e
66780daa2edc073e9067f4b12f75d41c58bea33d1455d788b72b0e1853cca132
GET /wp-content/plugins/akismet/_inc/form.js HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 12:27:31 GMT
content-type: application/javascript
last-modified: Wed, 14 Jul 2021 20:59:01 GMT
cache-control: max-age=604800
content-encoding: gzip
ddg-cache-status: HIT,HIT
etag: "60ef5015-2bc"
expires: Mon, 12 Dec 2022 17:15:14 GMT
age: 405908
content-length: 318
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cffeaa037aa43ee5dd38d9bf940f0ec
385130d35323155499a61e73e16a9d9e7a6448b5
2938e838bf98de278488e22b736756400136c887e31b44fc608c4da2a07e6ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0a1d368b1eb99c48990a02fe6dcd0461
e8e47cf6263b037e7809363f0789aacb0cbcdd23
f171bbb13efe07faecb8b6b6f3c54f9e04dc332408525d57ebc820a211fcea80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 662e7674f99eef605131b0afa3d27eac
36decb7b3dd4a1c2fbfa2ee75b31083a50243969
8c93fb4ddd47d02c824f20ba6fe8b8c7b864b6eec2fe84d22638f0227d9ca9ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash 296a5a06eafc4950f2cbcfb331e84089
7f9819fc037359fc7af6808bfcc6cf2c56718845
84877268694e5d2d037b75970fe362a7fc4775cfd76ebc9d7f7676b820019d00
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Sat, 17 Dec 2022 05:12:39 GMT
expires: Sat, 17 Dec 2022 05:12:39 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "a255ff5eb9ebf9b5"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/In_From_the_Side3.gif
185.178.208.130200 OK 5.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/In_From_the_Side3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 96cee8e1e1c977c0ef8b331898a64c73
0037747f6f601d7eccbe166681bd5e36ddd4436e
ed0901d6b430120d6dc0871f068c7f32a3f61e0a59a02e8f8d71bc8ef619d665
GET /wp-content/uploads/2022/12/In_From_the_Side3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:25:54 GMT
content-type: image/gif
content-length: 5329
last-modified: Fri, 16 Dec 2022 23:22:14 GMT
etag: "639cfda6-14d1"
expires: Fri, 23 Dec 2022 23:25:54 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 20805
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/I_Believe_in_Santa3.gif
185.178.208.130200 OK 5.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/I_Believe_in_Santa3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash af3cdc44e80c475af1b3570a4e88a132
dc3f105a275906fc8387b3de6cd055b297ed732a
5d45746805cefee8915f2f0d15457f58ceff237417e9d5c882b4941aa8caa219
GET /wp-content/uploads/2022/12/I_Believe_in_Santa3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:32:46 GMT
content-type: image/gif
content-length: 5455
last-modified: Fri, 16 Dec 2022 23:28:24 GMT
etag: "639cff18-154f"
expires: Fri, 23 Dec 2022 23:32:46 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 20393
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/De_Veroordeling3.gif
185.178.208.130200 OK 5.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/De_Veroordeling3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 2e01df48bdf7c584a6054201c9ae52ad
c182cbef48ef52fc389eb8fc1e0fc7ba7687cdf0
6f06649cca36d32af94c15073706a2b04b935377d678c5b72b7399c8ca28f3a7
GET /wp-content/uploads/2022/12/De_Veroordeling3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:08:28 GMT
content-type: image/gif
content-length: 5093
last-modified: Fri, 16 Dec 2022 23:03:25 GMT
etag: "639cf93d-13e5"
expires: Fri, 23 Dec 2022 23:08:28 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 21851
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-144276616-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-144276616-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 5f176c37006e2b1ef17ae89cb402205f
6b3f54a860eca26e5041144a99b0e666ae099c24
094026e178088eb5c92f1392fb32e1f6d48a93af37ead1728e53a2ad695e9533
GET /gtag/js?id=UA-144276616-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 17 Dec 2022 05:12:39 GMT
expires: Sat, 17 Dec 2022 05:12:39 GMT
cache-control: private, max-age=900
last-modified: Sat, 17 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43630
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/About_Fate3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/About_Fate3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 41012706da78b083a75ba94e20592053
7f1b8271e22415c637a40d05296ad47f2bb24dee
ccb4dacdbf0350929db302103ce38548b396907efee81ef6b348f99284a5a354
GET /wp-content/uploads/2022/12/About_Fate3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:20:16 GMT
content-type: image/gif
content-length: 5922
last-modified: Fri, 16 Dec 2022 23:15:40 GMT
etag: "639cfc1c-1722"
expires: Fri, 23 Dec 2022 23:20:16 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 21143
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/scroller.js
185.178.208.130200 OK 6.4 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/scroller.js
IP 185.178.208.130:0
Hash fc85f505820dde38ec6ac4329de1d76f
004725e36a0be79aa840f001f34fafc68fe37e24
6cc6b13f4c9dd2b10b38c56f549cd2fb05830ff375fed41718d76d24c908b4af
GET /wp-content/themes/charcoal2/scroller.js HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 00:43:19 GMT
content-type: application/javascript
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: W/"5ec470b1-400"
expires: Wed, 21 Dec 2022 17:51:36 GMT
age: 102560
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/06/Monstrous3.gif
185.178.208.130200 OK 5.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/06/Monstrous3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 5b1f731794018e3b63bdedeeae1767c1
08fbd19c74a45a23e1c1ad16389a2c777ea4249f
ea8a678eabd1d31cfdb0fcbc3c85c0bffa270572aed72c0634cfa7d4b218820c
GET /wp-content/uploads/2022/06/Monstrous3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 22:50:13 GMT
content-type: image/gif
content-length: 5260
last-modified: Fri, 10 Jun 2022 17:19:42 GMT
etag: "62a37d2e-148c"
expires: Fri, 23 Dec 2022 22:50:13 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 22946
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
www.google.es/cse/brand?form=cse-search-box&lang=es
142.250.74.67301 Moved Permanently 237 B URL HTTP/2 www.google.es/cse/brand?form=cse-search-box&lang=es
IP 142.250.74.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bda0dec939809d66ff8388fe5c716412
d768e1edcca0d64e15c1a26978d19c8fdfbd4e4f
334f05a39cdb64bac9f876dd2a2011649d08d578f6d751460c91ca294f3304cd
GET /cse/brand?form=cse-search-box&lang=es HTTP/1.1
Host: www.google.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.gstatic.com/prose/brandjs.js
x-content-type-options: nosniff
server: sffe
content-length: 237
x-xss-protection: 0
date: Sat, 17 Dec 2022 04:52:02 GMT
expires: Sat, 17 Dec 2022 05:22:02 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1237
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Contra3.gif
185.178.208.130200 OK 5.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Contra3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 0ff2613fa166ad86e1162d5d1f33fa4d
d9640c5c003a54a2ae5b1acd2d2a8856762b5a03
51fb25cc9dce6655bccb8024c21b6f364967ba3f3c4c26f8d61ab2777165d1db
GET /wp-content/uploads/2022/12/Contra3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 05:52:26 GMT
content-type: image/gif
content-length: 5519
last-modified: Fri, 16 Dec 2022 05:45:57 GMT
etag: "639c0615-158f"
expires: Fri, 23 Dec 2022 05:52:26 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 84013
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Es_ist_nur_eine_Phase_Hase3.gif
185.178.208.130200 OK 5.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Es_ist_nur_eine_Phase_Hase3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash b8f7f8b8224aeeb8743f7f1e9de5fe21
fe2576f910b45cc47e411be0e20b7f394cd19fda
796b9fc06e09ce296b97471b178f9c5d6e5c17009f2f72127ba919bf947a1429
GET /wp-content/uploads/2022/12/Es_ist_nur_eine_Phase_Hase3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 06:28:25 GMT
content-type: image/gif
content-length: 5620
last-modified: Fri, 16 Dec 2022 06:22:54 GMT
etag: "639c0ebe-15f4"
expires: Fri, 23 Dec 2022 06:28:25 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 81855
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Down_with_the_King3.gif
185.178.208.130200 OK 5.7 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Down_with_the_King3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash d9b1945352d9515156f6c5c43cb83eb2
1ab36f988b5f27038ddcf20a6231b5c49d2a9535
dbb8952ba1327d676c26a9d6f1bd9fdbb87d93708392d8884b50ff998186b061
GET /wp-content/uploads/2022/12/Down_with_the_King3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 05:34:50 GMT
content-type: image/gif
content-length: 5666
last-modified: Fri, 16 Dec 2022 05:03:24 GMT
etag: "639bfc1c-1622"
expires: Fri, 23 Dec 2022 05:34:50 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 85069
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio3.gif
185.178.208.130200 OK 4.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash a08b02c07b51b3bf31d1aeb1b9636748
8a8b3fa110e1cd091ec82e597b7930bc2061566e
46fda015c1e34f21393db083c1cf955612fc74d7e87fd8336c1dbb2aec64e8de
GET /wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 04:48:18 GMT
content-type: image/gif
content-length: 4269
last-modified: Fri, 16 Dec 2022 04:46:07 GMT
etag: "639bf80f-10ad"
expires: Fri, 23 Dec 2022 04:48:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 87861
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Night_at_the_Museum_Kahmunrah_Rises_Again3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Night_at_the_Museum_Kahmunrah_Rises_Again3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 8e0c065b57f04e50ae1cc80252995cf0
6e8349dd2b992733762659d520a18df2f5c4430b
dcb407ca4d66874110634d3a09a310a7c67ae1adb0fabaa82d3b2eafe5a74f37
GET /wp-content/uploads/2022/12/Night_at_the_Museum_Kahmunrah_Rises_Again3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 06:08:25 GMT
content-type: image/gif
content-length: 6054
last-modified: Fri, 16 Dec 2022 04:03:26 GMT
etag: "639bee0e-17a6"
expires: Fri, 23 Dec 2022 06:08:25 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 83054
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Its_A_Wonderful_Binge3.gif
185.178.208.130200 OK 6.2 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Its_A_Wonderful_Binge3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 46baf454f6c96314b461d50e322dfb2d
763513ba966667fc45b4c25b9e47e92ed7ec6fe8
d1becb76e07ea39690d4a97435f5a18728b92f087b31deb6e8c794a2c7468f7a
GET /wp-content/uploads/2022/12/Its_A_Wonderful_Binge3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 16:01:22 GMT
content-type: image/gif
content-length: 6209
last-modified: Wed, 14 Dec 2022 15:57:40 GMT
etag: "6399f274-1841"
expires: Wed, 21 Dec 2022 16:01:22 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 220277
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Huevitos_congelados3.gif
185.178.208.130200 OK 5.7 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Huevitos_congelados3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash fb83ae8e77b35977d43ddef6b2e47a57
0fd855d7be878c2580de8ba719040066c29bdb4d
2581fa5c540c192146977e895e1e58c60afde1dbe4520ef2c314d79643bbf5dd
GET /wp-content/uploads/2022/12/Huevitos_congelados3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 04:35:18 GMT
content-type: image/gif
content-length: 5744
last-modified: Fri, 16 Dec 2022 04:32:04 GMT
etag: "639bf4c4-1670"
expires: Fri, 23 Dec 2022 04:35:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 88641
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Ardiente_paciencia3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Ardiente_paciencia3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash dd27864f92640c5c2247a1b4000afe76
8dc1bdd53c1a4a49d9cc55c013ae2dc38da353d3
96c8680e170e0cc610cf871d8119237c9a68c5182b6cb041c4c55b376700651c
GET /wp-content/uploads/2022/12/Ardiente_paciencia3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 06:18:02 GMT
content-type: image/gif
content-length: 5840
last-modified: Fri, 16 Dec 2022 06:13:20 GMT
etag: "639c0c80-16d0"
expires: Fri, 23 Dec 2022 06:18:02 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 82477
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Contra2.gif
185.178.208.130200 OK 13 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Contra2.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 98 x 140\012- data
Hash dc8e467cd00def394daf646e5745147d
057d337b0645057cbbbd1bbbb99439ffb363f19b
2280db99874fb34d20f95d41a12e43970652ad0dd7e56c07a9b291f62b8121a2
GET /wp-content/uploads/2022/12/Contra2.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 05:52:28 GMT
content-type: image/gif
content-length: 12882
last-modified: Fri, 16 Dec 2022 05:45:56 GMT
etag: "639c0614-3252"
expires: Fri, 23 Dec 2022 05:52:28 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 84011
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Matrimillas3.gif
185.178.208.130200 OK 5.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Matrimillas3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash a946f5ae74e62e8d6c05dfae2da8c163
363151c97cb13188354ce80fa8178a3a31523b0c
95fb9779955597367fa0340e918a6cfbbe1a7fde42bb23572cd98bb727c1063b
GET /wp-content/uploads/2022/12/Matrimillas3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 04:35:18 GMT
content-type: image/gif
content-length: 5271
last-modified: Fri, 16 Dec 2022 04:26:41 GMT
etag: "639bf381-1497"
expires: Fri, 23 Dec 2022 04:35:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 88641
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Hawa3.gif
185.178.208.130200 OK 5.4 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Hawa3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash e492776b937ea86d865bb75e5be3532e
e14585ba32b9209c5e3f621aa50000aefc8edb2a
bf00126c84b7219480bfee3758a3162fefc531ed141e405b74fb9e8d6fe5a4ab
GET /wp-content/uploads/2022/12/Hawa3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 04:27:59 GMT
content-type: image/gif
content-length: 5409
last-modified: Mon, 12 Dec 2022 04:23:06 GMT
etag: "6396acaa-1521"
expires: Mon, 19 Dec 2022 04:27:59 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 434680
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Something_from_Tiffanys3.gif
185.178.208.130200 OK 5.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Something_from_Tiffanys3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 505e0a40345e3d3397102b96441d06fa
ad431cabdb21d5e276c38c733e9052d5a2f8b21b
27f8bd0014e13471d527bd4b50fa3920e0412ab580f0cd596232a26993118501
GET /wp-content/uploads/2022/12/Something_from_Tiffanys3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 19:12:46 GMT
content-type: image/gif
content-length: 5621
last-modified: Fri, 09 Dec 2022 19:02:44 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "63938654-15f5"
expires: Fri, 23 Dec 2022 19:09:45 GMT
age: 35993
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Navidad_en_Vivo3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Navidad_en_Vivo3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 5847c992c65b0d93e28f4768fc62fe9c
096fbabfb28c7a04aa629ca49331140870e02a59
909d3700ac80c7ab2f749e84396acbb35a46a7f96ef0b6edefe5f410c8107e29
GET /wp-content/uploads/2022/12/Navidad_en_Vivo3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 03:58:08 GMT
content-type: image/gif
content-length: 5804
last-modified: Fri, 16 Dec 2022 03:53:35 GMT
etag: "639bebbf-16ac"
expires: Fri, 23 Dec 2022 03:58:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 90871
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Ramona3.gif
185.178.208.130200 OK 5.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Ramona3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 03b488b4fe48f642c2af25951bafbf2f
9392545f6cd2b936318e04f7a896e3ee1667904b
3f0e3ed93c9a545c0332216d4cfb6593d8f5beed2435cc80f05d155c5eba3a4b
GET /wp-content/uploads/2022/12/Ramona3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 22:32:10 GMT
content-type: image/gif
content-length: 5117
last-modified: Fri, 16 Dec 2022 22:27:25 GMT
etag: "639cf0cd-13fd"
expires: Fri, 23 Dec 2022 22:32:10 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 24029
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Los_Reyes_Magos_La_verdad3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Los_Reyes_Magos_La_verdad3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash a02e7994259dc423c3addb5601e66787
e9c75f240bbe0666f38f948d8d710f4444d66e67
4166e2f571e530d7a0201b405f03b24d546b37ddd01ae32eaba835af23c374f0
GET /wp-content/uploads/2022/12/Los_Reyes_Magos_La_verdad3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:01:36 GMT
content-type: image/gif
content-length: 5997
last-modified: Fri, 16 Dec 2022 22:57:09 GMT
etag: "639cf7c5-176d"
expires: Fri, 23 Dec 2022 23:01:36 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 22263
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 385bad1390edf4dc694548a3f7b16281
57536fa694ef8306c436a37dbfc2f82af2344120
e6ad8e17f7b82dc9b46e5e99a73b59fa284fa72cf737dada269da9cf856b7736
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/wp-content/uploads/2022/12/Ozel_Ders3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Ozel_Ders3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 05c73d4eface20f62b9651e56dab3f74
f7738ea713e4cd177da3305a7ecb3d9554fc30e1
a11634d7a97a365ccd481519c6b2465d1bbef1276c521d419c0899cdaf11b3be
GET /wp-content/uploads/2022/12/Ozel_Ders3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 23:37:24 GMT
content-type: image/gif
content-length: 5968
last-modified: Fri, 16 Dec 2022 23:34:22 GMT
etag: "639d007e-1750"
expires: Fri, 23 Dec 2022 23:37:24 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 20115
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/La_mancha-negra3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/La_mancha-negra3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 627fd4cb97d158d8652bae2a2881b6fa
b1630fcc7033102ef27d0802c2cbb9bb6fd4440d
b44d5572bc94f927582bd31571a78d3d02b432acb394ff0f512d825a53d8888e
GET /wp-content/uploads/2022/12/La_mancha-negra3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 22:54:18 GMT
content-type: image/gif
content-length: 5865
last-modified: Fri, 16 Dec 2022 22:51:57 GMT
etag: "639cf68d-16e9"
expires: Fri, 23 Dec 2022 22:54:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 22701
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Mad_Heidi3.gif
185.178.208.130200 OK 6.2 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Mad_Heidi3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 58010e4a242e8632e3e3541649272264
2e26397f28d7f7ccfe628417400d9e000dbe90cd
8dc3e7c13ae54afa085b6056f3858a4bc5cbebe4757086b6f24077ed74eb7a1e
GET /wp-content/uploads/2022/12/Mad_Heidi3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 22:44:02 GMT
content-type: image/gif
content-length: 6168
last-modified: Fri, 16 Dec 2022 22:40:52 GMT
etag: "639cf3f4-1818"
expires: Fri, 23 Dec 2022 22:44:02 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 23318
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/They_Them3.gif
185.178.208.130200 OK 6.4 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/They_Them3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 07ac52075460cd3da42b83d195ad007c
ee36fab4fb19f26d33d017577ca7cdbc5d00be11
690085482ad88c76914603e599150b9bcc9502d68934e726aefb3f684a124843
GET /wp-content/uploads/2022/08/They_Them3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 22:24:57 GMT
content-type: image/gif
content-length: 6354
last-modified: Mon, 08 Aug 2022 15:31:53 GMT
etag: "62f12c69-18d2"
expires: Fri, 23 Dec 2022 22:24:57 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 24462
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio4.gif
185.178.208.130200 OK 39 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 3359153c2123818feaf3054dc1139f96
8550de0212419c18c05078cc9a76959211f75573
3bbdd037e986d89889ba349f9a98f67fed59ba3adb59c2ba95f6b14d74f07622
GET /wp-content/uploads/2022/12/Guillermo_del_Toros_Pinocchio4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 04:48:17 GMT
content-type: image/gif
content-length: 38755
last-modified: Fri, 16 Dec 2022 04:46:07 GMT
etag: "639bf80f-9763"
expires: Fri, 23 Dec 2022 04:48:17 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 87862
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Emancipation4.gif
185.178.208.130200 OK 45 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Emancipation4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4615d0d673b5e2a5a1d6094b101f00f6
a1ef5793808b4d90961a215806b829f84f31b927
34fd3bd7d913d549c50026e3c1e8df7f3d4c52de522fdd9b3b4d5fa1ca2a305f
GET /wp-content/uploads/2022/12/Emancipation4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 20:02:13 GMT
content-type: image/gif
content-length: 44595
last-modified: Mon, 12 Dec 2022 04:29:30 GMT
etag: "6396ae2a-ae33"
expires: Thu, 22 Dec 2022 20:02:13 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 119426
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Abandoned3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Abandoned3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash e8c15c50d48e8d22de0cb1483fbcf679
00f5e8bf106b53f5bb4754bbfbec7e1ff0eeded3
ee9f92734fa393692402cf11c43aa091da1584a8719958f3330c20457259a194
GET /wp-content/uploads/2022/07/Abandoned3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 14:46:23 GMT
content-type: image/gif
content-length: 5813
last-modified: Sun, 17 Jul 2022 21:02:40 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "62d478f0-16b5"
expires: Wed, 21 Dec 2022 14:46:23 GMT
age: 224776
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/03/Ash_and_Dust3.gif
185.178.208.130200 OK 6.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/03/Ash_and_Dust3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 38eaf116e407c5167fff70da8812e9f9
40b64e4131adbb024715ac17b51a4344bd78db94
b38d013f124eceada588d549c1ada9c63603ac94032dee5c49829ced0e75934e
GET /wp-content/uploads/2022/03/Ash_and_Dust3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 15:53:25 GMT
content-type: image/gif
content-length: 6262
last-modified: Sat, 19 Mar 2022 22:06:46 GMT
etag: "623653f6-1876"
expires: Wed, 21 Dec 2022 15:53:25 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 220754
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Slayers3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Slayers3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash afcfa6ae92cf0c5d46d2fc55be58d0d6
1016b4cdef56fed582250b708f3d10f05d751a2d
c5d11edd019bce8e9630d378104d39cf6d5557513b6523df52819b7829215bec
GET /wp-content/uploads/2022/12/Slayers3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 20:42:15 GMT
content-type: image/gif
content-length: 6058
last-modified: Tue, 06 Dec 2022 04:21:27 GMT
etag: "638ec347-17aa"
expires: Mon, 19 Dec 2022 20:42:15 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 376224
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Emancipation3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Emancipation3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 966ef21a6ad09956106f4d2ede61618e
1e8c56b15c76c7c652735ada4a8ed4b1860cc1fb
43fc7d6bad7e548791481c73db38b3c75f1151c8b6ef25ee6934bd1e46d729a0
GET /wp-content/uploads/2022/12/Emancipation3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 04:35:23 GMT
content-type: image/gif
content-length: 5962
last-modified: Mon, 12 Dec 2022 04:29:28 GMT
etag: "6396ae28-174a"
expires: Mon, 19 Dec 2022 04:35:23 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 434236
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Los_renglones_torcidos_de_Dios3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Los_renglones_torcidos_de_Dios3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash cfd71c678d51fd5a7da3b42b47f6405f
779f4b0f7370e77b1de62ff2b6966723efc89c17
a527544a23d513f579ff4ec80ab58439360b95f3ec09bf2446826a3527fa1645
GET /wp-content/uploads/2022/10/Los_renglones_torcidos_de_Dios3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 10:07:27 GMT
content-type: image/gif
content-length: 6052
last-modified: Mon, 10 Oct 2022 23:20:09 GMT
etag: "6344a8a9-17a4"
expires: Thu, 22 Dec 2022 10:07:27 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 155112
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/11/La_fracture3.gif
185.178.208.130200 OK 5.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/11/La_fracture3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 6071a88502aec64d4055e4be8a8a0dcc
896b3a7a3b28acd15cfcd9e62aa4a62a180d6f0f
be0a5e80eef5685a401a3b6b09514ef5d78481780588e6dbcf5b0efa7db01678
GET /wp-content/uploads/2021/11/La_fracture3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 06:43:59 GMT
content-type: image/gif
content-length: 5104
last-modified: Mon, 29 Nov 2021 14:16:45 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "61a4e0cd-13f0"
expires: Thu, 22 Dec 2022 06:43:59 GMT
age: 167320
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Amsterdam4.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Amsterdam4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4b04ddab75cd6fad617b3081e254dcb1
e5b90f90cac25fecb04f1219e6dd041880cd05da
568a0bb4135b099a04325fbb7b83aa0e383151d07b48abc14dedaf0abbd1c9e4
GET /wp-content/uploads/2022/11/Amsterdam4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 17:52:30 GMT
content-type: image/gif
content-length: 35652
last-modified: Tue, 15 Nov 2022 17:40:37 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6373cf15-8b44"
expires: Sun, 18 Dec 2022 12:08:05 GMT
age: 300010
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Black_Adam5.gif
185.178.208.130200 OK 34 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Black_Adam5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash cc449cf16222716cab5d0792042b7c4f
60d4beb0a0fe383d8763287786892ee6c2cab395
dd45a20cf17c45159382a965ae8ae5f9f9db9b330d71048a9ca594dc559139ee
GET /wp-content/uploads/2022/11/Black_Adam5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 10 Dec 2022 19:18:42 GMT
content-type: image/gif
content-length: 33635
last-modified: Wed, 23 Nov 2022 02:20:29 GMT
etag: "637d836d-8363"
expires: Sat, 17 Dec 2022 19:18:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 554037
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Avatar_The_Way_of_Water_new.jpg
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Avatar_The_Way_of_Water_new.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.4 (Macintosh), datetime=2022:12:15 12:37:05], baseline, precision 8, 215x279, components 3\012- data
Hash 2e5f76915fee991e0351c290c13596e3
e11a5c278d58ec8bbb4d03cc6ebc4d197e5ec992
d86df1d71a1818d51af64b6372fbd686fa664ee7ca228d10450f21f4e369926d
GET /wp-content/uploads/2022/12/Avatar_The_Way_of_Water_new.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 17:41:56 GMT
content-type: image/jpeg
content-length: 35880
last-modified: Thu, 15 Dec 2022 17:37:10 GMT
etag: "639b5b46-8c28"
expires: Thu, 22 Dec 2022 17:41:56 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 127843
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 609af1aca0b86df61decea3888097441
8d04bc59beaa1da770ebb5002cfc05d58f5553f2
aecdf6e59f70749c2be0a890a73f40750a149a20034de1ef850837b51d1453d6
GET /wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 08:09:05 GMT
content-type: image/gif
content-length: 35488
last-modified: Wed, 02 Nov 2022 05:15:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6361fcdc-8aa0"
expires: Sun, 18 Dec 2022 04:53:48 GMT
age: 162214
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/The_Woman_King4.gif
185.178.208.130200 OK 44 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/The_Woman_King4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 3290f6c4940858e881cb31838fdfb891
6920d3ca37cf1681f8a2208004912ad73a58f4e6
66218423811df26cf62257ea934e4543de60c4d37b6ec1a00c6cee6bd6785031
GET /wp-content/uploads/2022/11/The_Woman_King4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 08:06:59 GMT
content-type: image/gif
content-length: 44520
last-modified: Wed, 23 Nov 2022 01:43:51 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "637d7ad7-ade8"
expires: Wed, 14 Dec 2022 08:19:46 GMT
age: 248740
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Beast2m4.gif
185.178.208.130200 OK 41 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Beast2m4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash c15b04077a1988ceab4d1ea6905d7520
922c0aa0e66d16b61c058e81e6721f4ec7589de8
63e990da95df43fa16d4cd816e4f0b4f3078d6921c3094eab0af218ac118c91e
GET /wp-content/uploads/2022/09/Beast2m4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 11 Dec 2022 08:40:49 GMT
content-type: image/gif
content-length: 41074
last-modified: Thu, 08 Sep 2022 18:35:12 GMT
etag: "631a35e0-a072"
expires: Sun, 18 Dec 2022 08:40:49 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 505910
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Reyes_contra_Santa3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Reyes_contra_Santa3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash c4c798ae25cd847aa674af573a6a23f6
0d84754f460181d9d716665240dab6b6b5d58fd5
f6037e4462054e482f5b10ed27cbbb6bfd9b4a486d8dcc1624fa4f47ff290fce
GET /wp-content/uploads/2022/11/Reyes_contra_Santa3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 19:12:46 GMT
content-type: image/gif
content-length: 5977
last-modified: Sun, 27 Nov 2022 23:28:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6383f29f-1759"
expires: Thu, 22 Dec 2022 11:24:10 GMT
age: 35993
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cffeaa037aa43ee5dd38d9bf940f0ec
385130d35323155499a61e73e16a9d9e7a6448b5
2938e838bf98de278488e22b736756400136c887e31b44fc608c4da2a07e6ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/wp-includes/js/wp-embed.min.js
185.178.208.130200 OK 92 kB URL HTTP/2 gnula.nu/wp-includes/js/wp-embed.min.js
IP 185.178.208.130:0
File type ASCII text, with very long lines (1391)
Hash 6fc591723e247651b321b576f2f5baae
ee2ca059084e695a8fe151e683ae8940123e2c62
4e95739ea0d52735180f3639bf377c50d243fadd7a06b54aa2be9664dcb478e8
GET /wp-includes/js/wp-embed.min.js HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 00:33:24 GMT
content-type: application/javascript
last-modified: Mon, 15 Feb 2021 03:38:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: W/"6029ecaa-592"
expires: Tue, 20 Dec 2022 10:36:44 GMT
age: 275955
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 432
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 17 Dec 2022 05:12:39 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F716)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
gnula.nu/wp-content/uploads/2022/10/Wolves_of_War3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Wolves_of_War3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1c97acb987dc9dca04d2eddf5bddb675
e5bc510c5893661656cd6b109295ffb2c8841715
67c259a31f04625f034c4752496f95cacf6bda0679da40ab1199f451f588514b
GET /wp-content/uploads/2022/10/Wolves_of_War3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 08:08:15 GMT
content-type: image/gif
content-length: 6064
last-modified: Mon, 10 Oct 2022 02:42:31 GMT
etag: "63438697-17b0"
expires: Wed, 21 Dec 2022 08:08:15 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 248664
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/One_Way3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/One_Way3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 55b72fe1f1d8e1846314fa1fcc87dea8
c1bfdd45a5e721e48399f585269a31d52a7014d8
6e90a7779701b8a95f079f9c3130fb6ca3f4f4dd3188311ca396ed89703f7762
GET /wp-content/uploads/2022/09/One_Way3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 16:02:28 GMT
content-type: image/gif
content-length: 5861
last-modified: Mon, 19 Sep 2022 14:30:48 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "63287d18-16e5"
expires: Wed, 21 Dec 2022 12:10:34 GMT
age: 133811
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/Heroes_de_barrio3.gif
185.178.208.130200 OK 4.2 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Heroes_de_barrio3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1625270919acbbbd379d863032ead032
3371037a16245c21cb7115d1692c4ea11c36e604
1af653a6e03cef278b0014030130095200a5eef0c2d80a7867c387dc80867d6c
GET /wp-content/uploads/2022/08/Heroes_de_barrio3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 20:43:30 GMT
content-type: image/gif
content-length: 4229
last-modified: Tue, 02 Aug 2022 15:34:13 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62e943f5-1085"
expires: Sun, 18 Dec 2022 09:36:45 GMT
age: 203349
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/04/Alien_Sniperess3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/04/Alien_Sniperess3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 75b11d4892ea988b5ff56b1ce2cbace4
eb6cbd3e52a5d8f48f41ecf579e77161406a1df7
5c456caafe5226c7c5a8790612f11b1dcafb7593b7221965493821903dafc050
GET /wp-content/uploads/2022/04/Alien_Sniperess3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 09:25:31 GMT
content-type: image/gif
content-length: 5892
last-modified: Sun, 24 Apr 2022 14:36:21 GMT
etag: "62656065-1704"
expires: Tue, 20 Dec 2022 09:25:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 330428
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Dont_Worry_Darling4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Dont_Worry_Darling4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 784bc6da36153189895b958af63c648c
5c0ae88ad3d2720921dfb6954809ba8ac5cfcbf3
81c22b8799def0e5e82cbc13abaf6643752c4f522c9eaa9c9edf1d79be3b58ad
GET /wp-content/uploads/2022/10/Dont_Worry_Darling4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 10:07:50 GMT
content-type: image/gif
content-length: 33362
last-modified: Wed, 26 Oct 2022 03:28:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6358a96a-8252"
expires: Sat, 17 Dec 2022 15:16:34 GMT
age: 68689
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/Nope4.gif
185.178.208.130200 OK 41 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Nope4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 3938804975796ef88f10bfdc13098f7c
6c228c84d8867f44d5b61ce39dcdf7e5ae520aa8
385a0d28d4855873ad6f61d07464f23613249bad88579d60123392deb6bf3364
GET /wp-content/uploads/2022/08/Nope4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 14:12:09 GMT
content-type: image/gif
content-length: 40845
last-modified: Thu, 25 Aug 2022 17:12:40 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6307ad88-9f8d"
expires: Sat, 17 Dec 2022 10:19:59 GMT
age: 140430
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/My_Policeman4.gif
185.178.208.130200 OK 38 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/My_Policeman4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash ee49875136f6a4e0f36b1b090ce32bdf
5fb4e22a36354d52309bd32877f4d043eaa66a1f
0d0fa87c67b46606b66c108106059e35792c45f1727d28e592d8d77b149213e3
GET /wp-content/uploads/2022/11/My_Policeman4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 17:06:13 GMT
content-type: image/gif
content-length: 38299
last-modified: Mon, 07 Nov 2022 16:34:47 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "636933a7-959b"
expires: Fri, 16 Dec 2022 07:48:32 GMT
age: 389186
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Fall5.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Fall5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 9e1d07d1fcda9b4db2b23ffd054d6640
0e389380b0628fb2a99944804b88b7019370e65c
03be235a9ddabb7abf9b38eee6387311d1ba8aa398d0f8f74bbc89535fbbfc2b
GET /wp-content/uploads/2022/09/Fall5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 14:17:09 GMT
content-type: image/gif
content-length: 36342
last-modified: Fri, 02 Sep 2022 14:32:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6312140a-8df6"
expires: Sat, 17 Dec 2022 07:16:02 GMT
age: 399330
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Lightyear4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Lightyear4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash bc414fdcadd43283ba463097b1de3d92
bff73ee95800371b3e50dee1fbdd691095dddd92
11232c7a182b06dd91a0d706fd48d0cea7fa9f3817ea606c368d1320cf0490b5
GET /wp-content/uploads/2022/07/Lightyear4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 22:24:33 GMT
content-type: image/gif
content-length: 33003
last-modified: Thu, 14 Jul 2022 16:51:11 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62d0497f-80eb"
expires: Sat, 17 Dec 2022 21:11:12 GMT
age: 283686
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash dce8ec7cdeee2deca8a5de066915e400
abb2f56e5f7c7a9c7d43762f73f2579d9fbc026d
3a7a5f3ce2f8e0930b9813442c60e2b04c701f713bb390061d424acf5560c3f1
GET /wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 17:37:51 GMT
content-type: image/gif
content-length: 33142
last-modified: Mon, 20 Sep 2021 02:11:32 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6147edd4-8176"
expires: Wed, 21 Dec 2022 00:35:25 GMT
age: 214488
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/09/Free_Guy5.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/09/Free_Guy5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash a46cc3cd01e9889ea09d14ec81ad1fbe
d462507245493576e505040bf0de984f2e490a4f
652a376a1bef35a690e3ca8a3ad646f5d71d291b4e430f09a7f7589575e0244a
GET /wp-content/uploads/2021/09/Free_Guy5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 10 Dec 2022 21:11:12 GMT
content-type: image/gif
content-length: 40539
last-modified: Wed, 29 Sep 2021 04:25:52 GMT
etag: "6153ead0-9e5b"
expires: Sat, 17 Dec 2022 21:11:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 547287
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/01/Promising_Young_Woman6.gif
185.178.208.130200 OK 31 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/01/Promising_Young_Woman6.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4f4d7e501b001996cf36e22084e3dc36
5a20254f715aea63e3af30da9e5968660cdb5b8e
f1f91761b558400b145c7672943ae3e766e3491b5015e6a120bc260528e6dba7
GET /wp-content/uploads/2021/01/Promising_Young_Woman6.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 10:56:19 GMT
content-type: image/gif
content-length: 31093
last-modified: Fri, 15 Jan 2021 01:35:34 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6000f166-7975"
expires: Sat, 17 Dec 2022 05:44:45 GMT
age: 152180
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pm9EqRQ0UScgvWndg3h4TA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qZD28dxF+riXjBdNKq617wuaT7o=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 662e7674f99eef605131b0afa3d27eac
36decb7b3dd4a1c2fbfa2ee75b31083a50243969
8c93fb4ddd47d02c824f20ba6fe8b8c7b864b6eec2fe84d22638f0227d9ca9ee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif
185.178.208.130200 OK 27 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 86a76e72f8f96c44d0347bdda79d056d
8007d4a92aafc7a13956c4cbb02d3a0020cb6026
cf784b3c1dda6a1870ccfa4902b760f53a063f44e8f3d7374d1db1852938c2c2
GET /wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 13:22:05 GMT
content-type: image/gif
content-length: 27011
last-modified: Sat, 02 Jan 2021 14:04:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ff07d5c-6983"
expires: Fri, 16 Dec 2022 11:07:43 GMT
age: 402634
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Black_Adam4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Black_Adam4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash eeb25bdd8c538037b393efbb6cbf9ec7
0f2013a4a0f5ff16b71dd49191727b6ec79f9204
487eb2a86630f85ced8acde914c76eae0cfce18dd8f8e8dcd6b4f832bfa09590
GET /wp-content/uploads/2022/11/Black_Adam4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 05:39:38 GMT
content-type: image/gif
content-length: 32715
last-modified: Wed, 16 Nov 2022 04:54:50 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "63746d1a-7fcb"
expires: Sat, 17 Dec 2022 16:55:50 GMT
age: 257581
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Halloween_Ends5.gif
185.178.208.130200 OK 34 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Halloween_Ends5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash f2dd6502043b71b245120730a5a17d4f
6f065d619730f0bccf081593f7897dc20a8fd5cd
e6cbf20a531d2fab7f96ffa775df952618075fcf48dd269f5617b9e88d308107
GET /wp-content/uploads/2022/11/Halloween_Ends5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 20:52:45 GMT
content-type: image/gif
content-length: 34140
last-modified: Sat, 05 Nov 2022 06:08:36 GMT
etag: "6365fde4-855c"
expires: Tue, 20 Dec 2022 20:52:45 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 289194
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash e77f0b8630fddaa60f4af4a3a38b1224
7b49bd428fbc28c1ca7acac32ce6aca443053eab
ceb169c22fda9f4739637944673372e7d2d2476778075b689eda5f292cad951d
GET /wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 11:29:48 GMT
content-type: image/gif
content-length: 40272
last-modified: Tue, 02 Aug 2022 14:00:46 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62e92e0e-9d50"
expires: Fri, 16 Dec 2022 08:55:10 GMT
age: 236571
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash defa4b7e5b78b3f54bb63e7971fb128c
f9df4b5376e03cf9672efed4b0415d597b4b61da
11e203114231734a55a865581b268b738a7ff79cea4da8bc0750cca58bfb8366
GET /wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 14:12:09 GMT
content-type: image/gif
content-length: 39834
last-modified: Mon, 19 Sep 2022 19:00:03 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6328bc33-9b9a"
expires: Mon, 19 Dec 2022 14:28:37 GMT
age: 140430
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/05/Chaos_Walking5.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/05/Chaos_Walking5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 8cbe83232e067e85f193643cff4733db
0b6476a4dbf52899cf9dc3b1b36743cfafcbbfa0
416115705b0e961e14f589b577a4b9096cf4c8bdb5f31ca3edb61b90b4947cac
GET /wp-content/uploads/2021/05/Chaos_Walking5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 05:37:55 GMT
content-type: image/gif
content-length: 35478
last-modified: Sat, 08 May 2021 22:27:16 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60971044-8a96"
expires: Thu, 22 Dec 2022 10:23:30 GMT
age: 84884
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9cc3bb12793d0bd929cc9e208d043a4
5216f6c367151951824ccb264786ff07a7beff5d
d97220bc08a16d3a5cb2b8e726f36d231922f28338258ac375b16b8f7787301b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97220BC08A16D3A5CB2B8E726F36D231922F28338258AC375B16B8F7787301B"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18638
Expires: Sat, 17 Dec 2022 10:23:17 GMT
Date: Sat, 17 Dec 2022 05:12:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 385bad1390edf4dc694548a3f7b16281
57536fa694ef8306c436a37dbfc2f82af2344120
e6ad8e17f7b82dc9b46e5e99a73b59fa284fa72cf737dada269da9cf856b7736
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash adcdbcc032f763fb6df3452d06cec25f
92a7bf8209930989013619971c6abf39b5c639d4
25ac98be2316dd7238a2ef038b27642270be777b7425bbfcdb1ca09f8bedcb5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/prose/brandjs.js
142.250.74.35200 OK 5.8 kB URL HTTP/2 www.gstatic.com/prose/brandjs.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1352)
Hash 10aa07ab4f7de5535f4cafe167ca4fa7
6c804574a29f9d8a77ed2823a7879e56dbc42c22
d111484a9bceee10b129b20ebd4ead4639b5d7dd78117522249195fb84db3cf0
GET /prose/brandjs.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gnula.nu/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 5807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 09:07:35 GMT
expires: Sat, 17 Dec 2022 09:07:35 GMT
cache-control: public, max-age=86400
age: 72304
last-modified: Tue, 06 Apr 2021 15:14:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/li2.gif
185.178.208.130200 OK 2.0 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/li2.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 210 x 25\012- data
Hash dd9cca90bdfe16a9a85b6e46f57bb97f
c1a797f881f789f111df30455369e05439856211
54f6772dc8d1466e269ea4da0435d09751b740226bcb57e336abf066459e484a
GET /wp-content/themes/charcoal2/images/li2.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 19:20:36 GMT
content-type: image/gif
content-length: 2043
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec470b1-7fb"
expires: Wed, 21 Dec 2022 19:18:13 GMT
age: 208323
X-Firefox-Spdy: h2
hangersbozal.com/flRBO2UBwE6d/27199
23.109.248.129200 OK 26 B URL HTTP/1.1 hangersbozal.com/flRBO2UBwE6d/27199
IP 23.109.248.129:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /flRBO2UBwE6d/27199 HTTP/1.1
Host: hangersbozal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Sun, 18-Dec-2022 05:12:39 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Sun, 18-Dec-2022 05:12:39 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
gnula.nu/wp-content/uploads/2014/04/heada.jpg
185.178.208.130200 OK 90 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/04/heada.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 16:36:42], progressive, precision 8, 1200x116, components 3\012- data
Hash 50f9a92c99bb8560a4108909327f1314
3b964b1dd35ae34c5c0bbc931a3e650e47546061
da7095ec43fb09c4c5fde2546ac40a15fca9ad785a44a5bd00cf1963128243ac
GET /wp-content/uploads/2014/04/heada.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 09:25:31 GMT
content-type: image/jpeg
content-length: 89782
last-modified: Wed, 20 May 2020 00:18:30 GMT
etag: "5ec47756-15eb6"
expires: Tue, 20 Dec 2022 09:25:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 330428
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/04/headb.jpg
185.178.208.130200 OK 46 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/04/headb.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 16:48:18], progressive, precision 8, 1200x65, components 3\012- data
Hash a464117e8d7a6e49becab8e33d3ef73c
39d4580fb9e397dc824075dc0100a5973ca4e2a7
b158e64c80b09edb16ca4ad107d62dbf4aa81e5bb684bd81dbdfb38447b2f241
GET /wp-content/uploads/2014/04/headb.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 11 Dec 2022 16:29:52 GMT
content-type: image/jpeg
content-length: 45487
last-modified: Wed, 20 May 2020 00:18:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec47757-b1af"
expires: Sun, 18 Dec 2022 16:28:58 GMT
age: 477767
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash adcdbcc032f763fb6df3452d06cec25f
92a7bf8209930989013619971c6abf39b5c639d4
25ac98be2316dd7238a2ef038b27642270be777b7425bbfcdb1ca09f8bedcb5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b950369ed5e8ed1a706e093dc41d1e9e
7178f751521553148267711562d81bf0f5fc7667
c8afd13051ed72e1fbcb0b0ca84ea4c05f7e306da0628fe9425af6f1e8bec208
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8AFD13051ED72E1FBCB0B0CA84EA4C05F7E306DA0628FE9425AF6F1E8BEC208"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5878
Expires: Sat, 17 Dec 2022 06:50:37 GMT
Date: Sat, 17 Dec 2022 05:12:39 GMT
Connection: keep-alive
murkilyergots.com/gcgLKdwzr0hh/33424
23.109.87.154200 OK 26 B URL HTTP/1.1 murkilyergots.com/gcgLKdwzr0hh/33424
IP 23.109.87.154:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /gcgLKdwzr0hh/33424 HTTP/1.1
Host: murkilyergots.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Sun, 18-Dec-2022 05:12:40 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Sun, 18-Dec-2022 05:12:40 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
gnula.nu/wp-content/themes/charcoal2/images/cover.jpg
185.178.208.130200 OK 7.9 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/cover.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 18:36:21], progressive, precision 8, 733x1, components 3\012- data
Hash c112f3224ed14bb42edf832fb372b7ed
b8fa50269e145cdff0e133e9200240881409affa
3ef5c51a9b84f59b50fa0b4bcf5f007a7f431d0b1ad305d1488a108341d3ea97
GET /wp-content/themes/charcoal2/images/cover.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 17:26:52 GMT
content-type: image/jpeg
content-length: 7863
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec470b1-1eb7"
expires: Sat, 17 Dec 2022 21:11:12 GMT
age: 301548
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/title2.jpg
185.178.208.130200 OK 13 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/title2.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=80, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=733], progressive, precision 8, 733x80, components 3\012- data
Hash 7e3bba5148383e024e7c60df9f45f50e
fdda5141ebad4e113e7474978a8b7f243b399488
69e8a33827a670237dddcabf6be05afa3de58f0bc4be2c19baa6840a033ef4fc
GET /wp-content/themes/charcoal2/images/title2.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 10 Dec 2022 19:43:23 GMT
content-type: image/jpeg
content-length: 12871
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "5ec470b1-3247"
expires: Sat, 17 Dec 2022 19:43:23 GMT
age: 552557
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/meta2.jpg
185.178.208.130200 OK 10 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/meta2.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=36, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=733], progressive, precision 8, 733x36, components 3\012- data
Hash d4ff51ac76dfed6d096597e3df76dd53
456558d04e04ea784a950ea752d35411e6b98bde
29c63951fe970b00a8d5da4c56da57e1b225abf9f5fc4e62fae7e6d40659a5c8
GET /wp-content/themes/charcoal2/images/meta2.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 15:18:39 GMT
content-type: image/jpeg
content-length: 10093
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "5ec470b1-276d"
expires: Mon, 19 Dec 2022 15:18:39 GMT
age: 395641
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2016/07/21_and_Over_poster_usa.jpg
185.178.208.130200 OK 292 kB URL HTTP/2 gnula.nu/wp-content/uploads/2016/07/21_and_Over_poster_usa.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2016:07:06 19:44:14], baseline, precision 8, 394x512, components 3\012- data
Size 292 kB (291846 bytes)
Hash 5d250bf69a1308e714fc1826ce625d0e
25ef65d95296b4f6ad3ea6843cf7557416de4b32
f70d676a0200d9adc2e646ea857f448ef881b07e30e31f68b978b30a433ecded
GET /wp-content/uploads/2016/07/21_and_Over_poster_usa.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 17 Dec 2022 05:12:39 GMT
content-type: image/jpeg
content-length: 291846
last-modified: Wed, 20 May 2020 00:18:49 GMT
etag: "5ec47769-47406"
expires: Sat, 24 Dec 2022 05:12:39 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/footer.jpg
185.178.208.130200 OK 12 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/footer.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 19:48:35], progressive, precision 8, 1200x72, components 3\012- data
Hash 2c6aad12cf0fdab93b1e0a1829e16e32
0920b41cd4d2f0f2b8fb42d992dfdddbc51ea67f
ab6ff958174c2bbf87bebd765f638b90904f63f31c85ce3e0159b67ca489d3b5
GET /wp-content/themes/charcoal2/images/footer.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 17:37:53 GMT
content-type: image/jpeg
content-length: 11906
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec470b1-2e82"
expires: Wed, 21 Dec 2022 00:35:28 GMT
age: 214487
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fb0a2d60c286b4e7b7edf815ffa8819
20bedb22994117a82b24bb575d6144b47138fa96
2e318ad76b556b717d55ca5155f28633255cdd489caac105ceeaea21d2a63c22
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2E318AD76B556B717D55CA5155F28633255CDD489CAAC105CEEAEA21D2A63C22"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Sat, 17 Dec 2022 08:43:28 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fb0a2d60c286b4e7b7edf815ffa8819
20bedb22994117a82b24bb575d6144b47138fa96
2e318ad76b556b717d55ca5155f28633255cdd489caac105ceeaea21d2a63c22
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2E318AD76B556B717D55CA5155F28633255CDD489CAAC105CEEAEA21D2A63C22"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12611
Expires: Sat, 17 Dec 2022 08:42:51 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c570bf99376e1e329edc5330e17247a
fb04417f5a0c14241ee55298ce72d7ae12eb47e5
d6127d32b32ce181f89d891f17ea8df85d6d042e8561915119fa52b15e596f23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6127D32B32CE181F89D891F17EA8DF85D6D042E8561915119FA52B15E596F23"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16574
Expires: Sat, 17 Dec 2022 09:48:54 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
gnula.nu/wp-content/uploads/2014/11/netulogo.jpg
185.178.208.130200 OK 2.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/11/netulogo.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 120x25, components 3\012- data
Hash cba3b20095c24b7e63db7d30bd0363ea
0139eb1665459191ff8105af0e813d0c1c138098
62c10396f5fd6183a81b17b06966f56901afad810556da133074567af9a5eee1
GET /wp-content/uploads/2014/11/netulogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 17:09:00 GMT
content-type: image/jpeg
content-length: 2533
last-modified: Wed, 20 May 2020 00:18:34 GMT
etag: "5ec4775a-9e5"
expires: Wed, 21 Dec 2022 17:09:00 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 216220
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fb0a2d60c286b4e7b7edf815ffa8819
20bedb22994117a82b24bb575d6144b47138fa96
2e318ad76b556b717d55ca5155f28633255cdd489caac105ceeaea21d2a63c22
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2E318AD76B556B717D55CA5155F28633255CDD489CAAC105CEEAEA21D2A63C22"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12648
Expires: Sat, 17 Dec 2022 08:43:28 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c570bf99376e1e329edc5330e17247a
fb04417f5a0c14241ee55298ce72d7ae12eb47e5
d6127d32b32ce181f89d891f17ea8df85d6d042e8561915119fa52b15e596f23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6127D32B32CE181F89D891F17EA8DF85D6D042E8561915119FA52B15E596F23"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16574
Expires: Sat, 17 Dec 2022 09:48:54 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
gnula.nu/wp-content/uploads/2014/03/streamlogo.jpg
185.178.208.130200 OK 11 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/03/streamlogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:29 20:20:02], progressive, precision 8, 120x25, components 3\012- data
Hash aa76e27b50dc1f64b3b86965865a938f
909bb632995d0ed0e9488bddb58db08997855fcb
6a9785c81021e3f738d420bb27c23228c0eb0922ac7f047d4fe5c3ffd6afcc99
GET /wp-content/uploads/2014/03/streamlogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 22:15:22 GMT
content-type: image/jpeg
content-length: 10955
last-modified: Wed, 20 May 2020 00:18:35 GMT
etag: "5ec4775b-2acb"
expires: Thu, 22 Dec 2022 22:15:22 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 111438
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/08/almmylogo.jpg
185.178.208.130200 OK 12 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/08/almmylogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:25 20:57:39], progressive, precision 8, 120x25, components 3\012- data
Hash c2f199bfdb5750b5da2d48234eca492e
3abb99bebf52cc711e5dcb387e1151eba29844bf
787f40391d749e3d4abf707476d833ce3703d2fbef0f4cebacb51a43d4b667a8
GET /wp-content/uploads/2014/08/almmylogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 06:29:21 GMT
content-type: image/jpeg
content-length: 12268
last-modified: Wed, 20 May 2020 00:18:36 GMT
etag: "5ec4775c-2fec"
expires: Thu, 22 Dec 2022 06:29:21 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 168199
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/03/teelogo.jpg
185.178.208.130200 OK 1.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/03/teelogo.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Picasa], baseline, precision 8, 120x25, components 3\012- data
Hash 79aa34a85d291706678d412586288e69
a49e3d3f00afa76d8752f3ac354e5923516b87a9
f2542be2bbff5095b6a0458ffd7b9f81dbe35cbe4663d558af58b6fdd75311c8
GET /wp-content/uploads/2014/03/teelogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 11:27:48 GMT
content-type: image/jpeg
content-length: 1869
last-modified: Wed, 20 May 2020 00:18:35 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec4775b-74d"
expires: Wed, 21 Dec 2022 01:00:16 GMT
age: 150292
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2015/07/streaminlogo.jpg
185.178.208.130200 OK 11 kB URL HTTP/2 gnula.nu/wp-content/uploads/2015/07/streaminlogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS5 Windows, datetime=2015:07:10 13:13:03], baseline, precision 8, 120x25, components 3\012- data
Hash 1a984b3a5a5f82ab7521e636e4eb9c2f
d854c8118c4da80e5c1aed184d733d8d85745626
3f22eb1fa2f3c037be6d2b473c462cb9870b67dffc0b5e9d1b7003b70121c9db
GET /wp-content/uploads/2015/07/streaminlogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 23:05:12 GMT
content-type: image/jpeg
content-length: 10761
last-modified: Wed, 20 May 2020 00:19:20 GMT
etag: "5ec47788-2a09"
expires: Tue, 20 Dec 2022 23:05:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 281248
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2015/03/openloadlogo.jpg
185.178.208.130200 OK 11 kB URL HTTP/2 gnula.nu/wp-content/uploads/2015/03/openloadlogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:03:29 15:15:09], baseline, precision 8, 120x25, components 3\012- data
Hash 15d4e6f382ee94b9d9230920c881b6e7
fb5a6daf812dd9c971bee24004aba6e76777d2cb
9178ee0072e9a0f0c2c3f4c74dd9af0a6a9b9fd3c128b3e63d2eb1a457ccd1ce
GET /wp-content/uploads/2015/03/openloadlogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 16 Dec 2022 09:09:15 GMT
content-type: image/jpeg
content-length: 10776
last-modified: Wed, 20 May 2020 00:19:18 GMT
etag: "5ec47786-2a18"
expires: Fri, 23 Dec 2022 09:09:15 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 72205
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/08/higefileslogo.jpg
185.178.208.130200 OK 13 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/08/higefileslogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS5 Windows, datetime=2014:08:07 12:16:59], progressive, precision 8, 120x25, components 3\012- data
Hash a8e4a7a20dec940ebe12382c3270f489
64146cada702a8ec9110ae97c4c0a240640b8f85
9da91d97c88a63a7291f70107be399aa69971f976c9fed7d5f5293844ee7cb41
GET /wp-content/uploads/2014/08/higefileslogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 13 Dec 2022 20:49:02 GMT
content-type: image/jpeg
content-length: 13174
last-modified: Wed, 20 May 2020 00:18:36 GMT
etag: "5ec4775c-3376"
expires: Tue, 20 Dec 2022 20:49:02 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 289418
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/08/powvideologo.jpg
185.178.208.130200 OK 13 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/08/powvideologo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2014:08:07 12:24:51], progressive, precision 8, 120x25, components 3\012- data
Hash b5a70ab6f979625d56428f38845b0585
722a725e9079675de26f4819a2ea355af5bcb365
a70828377c541df6d2f61b16bb705e200795a643816ee9eb5218d3c3cc4c10e3
GET /wp-content/uploads/2014/08/powvideologo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 12 Dec 2022 19:13:16 GMT
content-type: image/jpeg
content-length: 12692
last-modified: Wed, 20 May 2020 00:18:36 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec4775c-3194"
expires: Sun, 18 Dec 2022 15:08:35 GMT
age: 381564
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2016/03/bigfile_icono.jpg
185.178.208.130200 OK 10 kB URL HTTP/2 gnula.nu/wp-content/uploads/2016/03/bigfile_icono.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.02, resolution (DPCM), density 28x28, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS4 Windows, datetime=2016:03:30 16:15:55], baseline, precision 8, 120x25, components 3\012- data
Hash bc8dcb68e76ef3c3da529bc379388187
cb8f13d7b06dac50e820e7d048cd1f8771c1c891
d61840f9939bd3c869b1cada07af3c2cb4541d7b6d626e187ac8e9b3c4694f17
GET /wp-content/uploads/2016/03/bigfile_icono.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 18:06:10 GMT
content-type: image/jpeg
content-length: 10253
last-modified: Wed, 20 May 2020 00:18:44 GMT
etag: "5ec47764-280d"
expires: Thu, 22 Dec 2022 18:06:10 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 126390
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2016/04/flashx_logo_icono.jpg
185.178.208.130200 OK 11 kB URL HTTP/2 gnula.nu/wp-content/uploads/2016/04/flashx_logo_icono.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.02, resolution (DPCM), density 28x28, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS4 Windows, datetime=2016:04:11 17:09:47], baseline, precision 8, 120x25, components 3\012- data
Hash c073fc25099ef5094828a0c34ad66c3b
e1d0ab286599c17f2c158177dbe63e5ddcaf3639
c257d3c45420e52298688db59195c1bfc456dfd219f66b7fc99563331a419e94
GET /wp-content/uploads/2016/04/flashx_logo_icono.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 10:26:58 GMT
content-type: image/jpeg
content-length: 11168
last-modified: Wed, 20 May 2020 00:18:39 GMT
etag: "5ec4775f-2ba0"
expires: Thu, 22 Dec 2022 10:26:58 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 153942
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/11/uptoboxlogo.jpg
185.178.208.130200 OK 15 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/11/uptoboxlogo.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS5 Windows, datetime=2014:11:09 16:09:18], baseline, precision 8, 120x25, components 3\012- data
Hash b1293684b940b0a121cd5fef371bf248
ef2f3785dfd4a95159c53981bf16e9dc620068e4
fef8a80115e0dc42784d442204536dc7085770193c4549ca7cb070ca69c4cb04
GET /wp-content/uploads/2014/11/uptoboxlogo.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 17:31:11 GMT
content-type: image/jpeg
content-length: 14655
last-modified: Wed, 20 May 2020 00:18:34 GMT
etag: "5ec4775a-393f"
expires: Thu, 22 Dec 2022 17:31:11 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 128490
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/03/logouplonee.jpg
185.178.208.130200 OK 12 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/03/logouplonee.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:26 10:57:01], progressive, precision 8, 120x25, components 3\012- data
Hash 986778606a0fe42fb4c7634297518f12
b1d1b78683e7a6ba7197af4b8615239dd38247d5
3a364228f9e7852095a9f96fe04532684a1fc3146d9481e1c2a33e20449708d7
GET /wp-content/uploads/2014/03/logouplonee.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 13:55:24 GMT
content-type: image/jpeg
content-length: 11951
last-modified: Wed, 20 May 2020 00:18:35 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec4775b-2eaf"
expires: Sun, 18 Dec 2022 05:16:56 GMT
age: 227836
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f2b14b445e79fcfac81bfb16a56a97
d2f3ebd47a3a0b4153ccc946ad9a458d0caa9e35
b2de59ecc926f5e2c0b7a3fa09818b6576bea894162b216428b15a2bea7a3248
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5785
Cache-Control: max-age=151241
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Etag: "639ce4f8-1d7"
Expires: Sun, 18 Dec 2022 23:13:21 GMT
Last-Modified: Fri, 16 Dec 2022 21:36:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
185.178.208.130200 OK 0 B URL HTTP/2 gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
IP 185.178.208.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /comedia-gamberra/ver-21-and-over-2013-online/ HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/comedia-gamberra/ver-21-and-over-2013-online/
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html; charset=UTF-8
link: <https://gnula.nu/wp-json/>; rel="https://api.w.org/", <https://gnula.nu/wp-json/wp/v2/posts/8573>; rel="alternate"; type="application/json", <https://gnula.nu/?p=8573>; rel=shortlink
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&layout=button_count&show_faces=false&width=100&action=like&colorscheme=light
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&layout=button_count&show_faces=false&width=100&action=like&colorscheme=light
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&layout=button_count&show_faces=false&width=100&action=like&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 5UEDPNKWoMGn5E/wDedEBotUYuxD2ZPjvx8kNiv06bsyzfCHDLP305gdsDAujXVV+B+QCzb7RBEBfZdwAy+0hw==
content-length: 0
date: Sat, 17 Dec 2022 05:12:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
grunoaph.net/tag.min.js
139.45.197.238200 OK 24 kB IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9c2d6b1489d7384ea1531272c490ed1e
daa14cf1f173e9c3cf9c99c788b18ce7bc7e2f96
6b26ddfd104337ca3705d7071110bcd9de793d32659ae80b8ee465a6fea35a60
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/javascript; charset=utf-8
content-length: 23551
content-encoding: br
x-trace-id: b04df1a8d85e2f6793031cd14c9a5d34
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 16 Dec 2022 15:54:26 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b3f2b14b445e79fcfac81bfb16a56a97
d2f3ebd47a3a0b4153ccc946ad9a458d0caa9e35
b2de59ecc926f5e2c0b7a3fa09818b6576bea894162b216428b15a2bea7a3248
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5785
Cache-Control: max-age=151241
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Etag: "639ce4f8-1d7"
Expires: Sun, 18 Dec 2022 23:13:21 GMT
Last-Modified: Fri, 16 Dec 2022 21:36:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e8592d8417a0710ea548a6b473bd2941
b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1
7cc7052fa75f52ee33a801986886459a6529ac29d80c9b1d9df0195fe4083f27
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 03:44:41 GMT
ETag: "b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1"
Last-Modified: Sat, 17 Dec 2022 03:44:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2451
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a436e940b61-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e8592d8417a0710ea548a6b473bd2941
b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1
7cc7052fa75f52ee33a801986886459a6529ac29d80c9b1d9df0195fe4083f27
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 03:44:41 GMT
ETag: "b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1"
Last-Modified: Sat, 17 Dec 2022 03:44:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2451
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a436b78b4f1-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 7359017d483c134afccee3343494145c
7f61a3f2f72b5188e7e8130219bba27e510adb26
6599f6cf7d5e7e4f5ed6069c80581e733141a1f2ef08dac117556336ed5bae4c
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 03:51:52 GMT
ETag: "7f61a3f2f72b5188e7e8130219bba27e510adb26"
Last-Modified: Sat, 17 Dec 2022 03:51:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1801
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a4369ca0b45-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash e8592d8417a0710ea548a6b473bd2941
b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1
7cc7052fa75f52ee33a801986886459a6529ac29d80c9b1d9df0195fe4083f27
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 03:44:41 GMT
ETag: "b13e3c981940eb9f3b5dd5fa41b6676b78e7fdb1"
Last-Modified: Sat, 17 Dec 2022 03:44:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2451
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a436ab2b503-OSL
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fgnula.nu
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fgnula.nu
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=https%3A%2F%2Fgnula.nu HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1933
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 17 Dec 2022 05:12:40 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 17 Dec 2022 04:41:08 GMT
expires: Sat, 17 Dec 2022 06:41:08 GMT
cache-control: public, max-age=7200
age: 1892
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2015/06/natsu_incono_gnula.jpg
185.178.208.130200 OK 2.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2015/06/natsu_incono_gnula.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 59x45, components 3\012- data
Hash 00a0e9802138dd13d3433dc8a8892dc5
27f4b2b80e9fc682d63953d08ef14457dd8ae6ac
ad0ebb72ed8394e48ffaf5ef59244ccfe0f5af7a43df06fd7061b068f4a91df2
GET /wp-content/uploads/2015/06/natsu_incono_gnula.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 15 Dec 2022 16:32:56 GMT
content-type: image/jpeg
content-length: 2761
last-modified: Wed, 20 May 2020 00:19:16 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec47784-ac9"
expires: Thu, 22 Dec 2022 15:51:48 GMT
age: 131984
X-Firefox-Spdy: h2
www.google.com/cse/static/images/1x/es/branding.png
142.250.74.132200 OK 1.4 kB URL HTTP/2 www.google.com/cse/static/images/1x/es/branding.png
IP 142.250.74.132:0
File type PNG image data, 132 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cde6b1e2022536bb6bad42206b592e6
d5f8b090cdf01d307543e4adc439c5b450725ef6
6034e5ee0510f90b538cb59205702151396dda15fc431432b7fc95e4ecde8886
GET /cse/static/images/1x/es/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 09:56:50 GMT
expires: Fri, 15 Dec 2023 09:56:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
age: 155750
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1040.html
185.5.137.208301 Moved Permanently 162 B URL HTTP/1.1 videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1040.html
IP 185.5.137.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /videos/embed/mail/gottsu07/_myvideo/1040.html HTTP/1.1
Host: videoapi.my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1042.html
185.5.137.208301 Moved Permanently 162 B URL HTTP/1.1 videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1042.html
IP 185.5.137.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /videos/embed/mail/gottsu07/_myvideo/1042.html HTTP/1.1
Host: videoapi.my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1041.html
185.5.137.208301 Moved Permanently 162 B URL HTTP/1.1 videoapi.my.mail.ru/videos/embed/mail/gottsu07/_myvideo/1041.html
IP 185.5.137.208:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /videos/embed/mail/gottsu07/_myvideo/1041.html HTTP/1.1
Host: videoapi.my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b56a3548738502fa3cc2d975411a7900
e6584e903da8e7e6062fd14d0c927495f6819b83
8b4ed97669a9d9a093cb9b4c92f1676681ea9c279ac47105042fa922bb32057b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
polldaddy.com/ratings/rate.php?cmd=get&id=6422202&uid=wp-post-8573&item_id=_post_8573
192.0.123.249200 OK 863 B URL HTTP/2 polldaddy.com/ratings/rate.php?cmd=get&id=6422202&uid=wp-post-8573&item_id=_post_8573
IP 192.0.123.249:0
File type Unicode text, UTF-8 text, with very long lines (779)
Hash 2ae34df274e7134e23430eae4dfe46c3
8a24256f9d3936eff7e60fe776a70d31838b6831
d5e176e005c596620ea1f112011c317ba28f62675d705b648e95660b31207cee
GET /ratings/rate.php?cmd=get&id=6422202&uid=wp-post-8573&item_id=_post_8573 HTTP/1.1
Host: polldaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
vary: Accept-Encoding
content-language: en
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fcce7be1690fd6707259858008948e14
9b91aff2bda48fd1f9c365df92f3c47800b70d20
14d541a6bf58353828e99b5e58cf4ea443245f5056a8713a04e83fc02fe1726e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f2f54f5b44fa37debd7e80b70fe18bfb
920e58b3eb06fbc0d58ce5fc3684ca9c996f2a39
6c4152abe622e0accb7ba5c6061fc9debac044250cd4b77578c90a6b6d228df1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2734
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Last-Modified: Sat, 17 Dec 2022 04:27:06 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
ok.ru/res/js/lib/require-2.1.11_1ae533d5.js
5.61.23.11200 OK 5.8 kB URL HTTP/2 ok.ru/res/js/lib/require-2.1.11_1ae533d5.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (16739)
Hash 07e62c9cf1f95e62ea829b62dd9b669b
f3413232a12f65a0cca1fee0694a370dd65e8784
1445394e2f42ae01eaf7724ec39ee5a1ba3fb7bbd14378e7b2389b8730cce93d
GET /res/js/lib/require-2.1.11_1ae533d5.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997680200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
content-length: 5789
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:40 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
ok.ru/res/js/classic_4c39c71f.js
5.61.23.11200 OK 12 kB URL HTTP/2 ok.ru/res/js/classic_4c39c71f.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (43746)
Hash 3a54fc005b124138b6dfcda5f5a41f33
e8c5cdc26bd2194f4193f0a81c2734d46a91c8f2
b7283ba338e010eecee6ca06eaf1372d2d1d37f95e08cf63d9bb85256bb7271a
GET /res/js/classic_4c39c71f.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997680200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
content-length: 12139
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:40 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
player.vimple.ru/iframe/b1eb4a41cb41419b9c05ab37380f5236
104.21.25.247200 OK 2.9 kB URL HTTP/2 player.vimple.ru/iframe/b1eb4a41cb41419b9c05ab37380f5236
IP 104.21.25.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2006), with CRLF line terminators
Hash c279f2fc337382bc95fcbc9e8c21c14e
78e453b80ee06a51a6506f6739decc3c69bfa314
ff4f5b76d715cd65b97f01b84823c91a6cf64cb9b1f1a3770c7513e6940dfb48
GET /iframe/b1eb4a41cb41419b9c05ab37380f5236 HTTP/1.1
Host: player.vimple.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
set-cookie: UniversalUserID=e8d182d7e20c42f283be8d24215d4c5f; Expires=Sun, 17 Dec 2023 08:12:43 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None; HttpOnly; Domain=.vimple.ru
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4FvJWiY1CxZ%2Bnmm00l1M8H9XYHJBR9Wyy0Lsi6NlhogVnd2CakMvrzsH8uBeg6K8e%2BkFwNHpJobprCBQQ80kXwqiIbPTOYnBPrYhph6M5t0ESRCTCNm4gIc%2FXgelsoHvLoMf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ad2a42cf16b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db4900f0cbca180e3900403096264955
99636477d7d9c6884d979b016a21dadfa379ec99
1ddc08b6fb56a6491f79fac495682d64dcf7d3eb2d512381b02961bb647498cd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DDC08B6FB56A6491F79FAC495682D64DCF7D3EB2D512381B02961BB647498CD"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17405
Expires: Sat, 17 Dec 2022 10:02:45 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 868 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3ff0c7a6fae58dc82338f9e16382e7da
207166b1b68a1996153398845ce77a862056bc42
a5909261ca6d1cce2227ae6bb0038cb4039afea5d7f9c54bca4f84bb4757f88d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "024B8B887D30C23FC34428C8AE583D03B79ACA8B2C6A8FCEF5F163E48EF4AE69"
Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10475
Expires: Sat, 17 Dec 2022 08:07:15 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash bf16ebdbf234dda8fb18e79ea7f4aca4
2e382197d432d2c2e38678d372cd2dd9bc27cc03
192766aa485f4c171805b1f0a73c4a286051be3e321b1424647ceb71ff964ab0
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 00:31:37 GMT
ETag: "2e382197d432d2c2e38678d372cd2dd9bc27cc03"
Last-Modified: Sat, 17 Dec 2022 00:31:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3560
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a45bf430b61-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 4.5 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 7ee0fa6b9d51158cea0a686da1d311cf
725e47313db24a0d241fa51b9611f637347be48d
42689301827c01aaa690f2f951afc7ad31cda4e4d7fb0364750c8c9e5772a904
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 21 Dec 2022 00:31:37 GMT
ETag: "2e382197d432d2c2e38678d372cd2dd9bc27cc03"
Last-Modified: Sat, 17 Dec 2022 00:31:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3560
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a45cc6ab4f1-OSL
syndication.twitter.com/settings?session_id=d75f153bfd1cd971b14e8b76fb7a0da0c07c4a62
104.244.42.136200 OK 402 B URL HTTP/2 syndication.twitter.com/settings?session_id=d75f153bfd1cd971b14e8b76fb7a0da0c07c4a62
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (1109), with no line terminators
Hash 20129f6ba74cadb768c12cfebff99625
744c5248ab9712adf0179067dbadae75464f7383
53476bf04ddc3dbf9b75ba3f96f28a345c9cac4d9f7b0f57f901870692a4acf2
GET /settings?session_id=d75f153bfd1cd971b14e8b76fb7a0da0c07c4a62 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 17 Dec 2022 05:12:40 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 17 Dec 2022 05:12:40 GMT
content-length: 402
content-encoding: gzip
x-transaction-id: 136927cdb33bd765
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 106
x-connection-hash: 94ecaacf37be519f0e92c97d932a9bdbb365a928cd7b74c570b568e0a6d179d1
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db4900f0cbca180e3900403096264955
99636477d7d9c6884d979b016a21dadfa379ec99
1ddc08b6fb56a6491f79fac495682d64dcf7d3eb2d512381b02961bb647498cd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DDC08B6FB56A6491F79FAC495682D64DCF7D3EB2D512381B02961BB647498CD"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17405
Expires: Sat, 17 Dec 2022 10:02:45 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
my.rtmark.net/gid.js?userId=2e9d53484e9c46e1b9d45a16eae22830
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=2e9d53484e9c46e1b9d45a16eae22830
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash c15a2ca610b15070d6ab4e1804c9d24c
4ddc92ad7243b74f1b9e3006bb47083095b11310
d0a9d12086139ef96f04da70c3a538b1121891509345cdc5f45ab84fff5617b6
GET /gid.js?userId=2e9d53484e9c46e1b9d45a16eae22830 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gnula.nu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2e9d53484e9c46e1b9d45a16eae22830; expires=Sun, 17 Dec 2023 05:12:40 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&gjid=1720381684&_gid=493483576.1671253957&_u=YEBAAUAAAAAAACAAI~&z=1066416507
209.85.233.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&gjid=1720381684&_gid=493483576.1671253957&_u=YEBAAUAAAAAAACAAI~&z=1066416507
IP 209.85.233.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&gjid=1720381684&_gid=493483576.1671253957&_u=YEBAAUAAAAAAACAAI~&z=1066416507 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gnula.nu
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 17 Dec 2022 05:12:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db4900f0cbca180e3900403096264955
99636477d7d9c6884d979b016a21dadfa379ec99
1ddc08b6fb56a6491f79fac495682d64dcf7d3eb2d512381b02961bb647498cd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DDC08B6FB56A6491F79FAC495682D64DCF7D3EB2D512381B02961BB647498CD"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21508
Expires: Sat, 17 Dec 2022 11:11:08 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
93.184.220.66200 OK 5.7 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 93.184.220.66:0
Hash 52d279af28ea17e8d9f39a9af414b80b
feb87ea45dffaa39650978290c1d9a7071b9b493
869e5bdfca53ee07807a47747b136b833a529d03922f8e1c6e30864750402b99
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1927
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 17 Dec 2022 05:12:40 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F716)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7752844f399cd1f7dfb1ca6131bd407
d63b2b783ce290d2e032da1f60999584ab171579
2079c3ea0b15311a93e9bb07c107f209637e040327fd80a15cd17989acb83b81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ok.ru/videoembed/87997680200
5.61.23.11200 OK 24 kB URL HTTP/2 ok.ru/videoembed/87997680200
IP 5.61.23.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63040)
Hash 05a2833634fd8ce0d4fcb087d702bb06
5b4de9e508ae4d7157d850854e8ade2747ab0ee3
a017f403307aafe73ba954d6a3354daffa6c714c7890db8abb9ea620423065f1
GET /videoembed/87997680200 HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=2908507249044947038; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
_statid=3f3c091a-b465-42ee-8bec-3a53ca7bf83c; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
last-modified: Thu, 21 Jul 2022 20:52:34 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: br
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fgnula.nu&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
142.250.74.109200 OK 7.3 kB URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fgnula.nu&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2054)
Hash 958f8a2c8c9262c18224e7efc7b8c52e
f16657aa06a9dfc181d948aa676ab0b8a277e1f5
1fe434f3cd06bc655d8bc5f12e743269dff0a79ec6a8a2aeeb32567e856e9ae0
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fgnula.nu&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 17 Dec 2022 05:12:40 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-5bViREs2GWhM1fr-LlvZrQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.mycdn.me/videoPreview?id=128552864328&type=32&idx=0&tkn=r3lCzutAecrsbbdMXJq3Yw_ab7Q&fn=external_8
217.20.155.57200 OK 10 kB URL HTTP/2 i.mycdn.me/videoPreview?id=128552864328&type=32&idx=0&tkn=r3lCzutAecrsbbdMXJq3Yw_ab7Q&fn=external_8
IP 217.20.155.57:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5cda1f034583371de27b4b8eceffbfe2
10ae3fce1996b16673e39fa13199a82e552f89f2
84a0e09e47f3be2c568988f75ee26dbb5cdd197ebd6a5e315182d21b124c2530
GET /videoPreview?id=128552864328&type=32&idx=0&tkn=r3lCzutAecrsbbdMXJq3Yw_ab7Q&fn=external_8 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: image/webp
content-length: 10248
accept-ranges: bytes
last-modified: Tue, 18 Oct 2022 05:12:40 GMT
expires: Wed, 13 Sep 2023 05:12:40 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
polldaddy.com/images/ratings/info.png
192.0.123.249200 OK 1.2 kB URL HTTP/2 polldaddy.com/images/ratings/info.png
IP 192.0.123.249:0
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 242cc5efe3724c793e5fa742c3aa1315
fbba0bdf013403f3d835b54d222931d04e137167
8d1b51a6bcf97a173884161816c19b753e0088a0926148482d8a1f371706c774
GET /images/ratings/info.png HTTP/1.1
Host: polldaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: image/png
content-length: 1226
last-modified: Wed, 08 Sep 2021 04:24:16 GMT
etag: "61383af0-4ca"
expires: Mon, 16 Jan 2023 05:12:40 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
polldaddy.com/images/ratings/nero-hand-med.png
192.0.123.249200 OK 1.2 kB URL HTTP/2 polldaddy.com/images/ratings/nero-hand-med.png
IP 192.0.123.249:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 620224fd31a56f8b52ede14a0173f43f
e51333fbde9c767aa21bbd1610fc26c09868670d
d45bc6234fbff20dda709b132b23aa6cf93be77e85026f0fe740bb4a93bb0851
GET /images/ratings/nero-hand-med.png HTTP/1.1
Host: polldaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: image/png
content-length: 1179
last-modified: Wed, 08 Sep 2021 02:17:07 GMT
etag: "61381d23-49b"
expires: Mon, 16 Jan 2023 05:12:40 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
i.mycdn.me/videoPreview?id=128553323080&type=32&idx=0&tkn=LheF9AzWeYP57IMEywO-Mi_n7B8&fn=external_8
217.20.155.57200 OK 11 kB URL HTTP/2 i.mycdn.me/videoPreview?id=128553323080&type=32&idx=0&tkn=LheF9AzWeYP57IMEywO-Mi_n7B8&fn=external_8
IP 217.20.155.57:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 25cea33e5c41ea87c153088afe23b237
1622345cc1ce34fb802846aeab44fd27fb288454
fe7bdf9545704336b5699036c55a870edfab0dc5a810551751ae9f6a9fbb47f6
GET /videoPreview?id=128553323080&type=32&idx=0&tkn=LheF9AzWeYP57IMEywO-Mi_n7B8&fn=external_8 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: image/webp
content-length: 11408
accept-ranges: bytes
last-modified: Tue, 18 Oct 2022 05:12:40 GMT
expires: Wed, 13 Sep 2023 05:12:40 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041
94.100.180.39404 Not Found 20 kB URL HTTP/1.1 my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041
IP 94.100.180.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65067)
Hash 7748e0604e7688e154d2bb06d2eb4e0e
07606d347da0af720717593108ca7fe64a6f0b23
52bda67cbd4003800f96965cdbcb94ecd16db83f406f313ee4215f5c041423a5
GET /mail/gottsu07/video/embed/_myvideo/1041 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store
Content-Encoding: gzip
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 20:43:51 GMT
expires: Fri, 15 Dec 2023 20:43:51 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 09 Dec 2022 07:08:34 GMT
content-type: text/javascript
age: 116929
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.mycdn.me/videoPreview?id=128552798792&type=32&idx=0&tkn=pdt2cgLNVu9YdqbaU9JR4wWAMUc&fn=external_8
217.20.155.57200 OK 12 kB URL HTTP/2 i.mycdn.me/videoPreview?id=128552798792&type=32&idx=0&tkn=pdt2cgLNVu9YdqbaU9JR4wWAMUc&fn=external_8
IP 217.20.155.57:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x405, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 07c92a7f81b77197ce73559491190b03
97282e85285dab988e2075f67d6ac491ecfc2592
e14aa84de96954d5a10d879260a4f8e43d03eabad602708e560ef08ac90396f1
GET /videoPreview?id=128552798792&type=32&idx=0&tkn=pdt2cgLNVu9YdqbaU9JR4wWAMUc&fn=external_8 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: image/webp
content-length: 12176
accept-ranges: bytes
last-modified: Tue, 18 Oct 2022 05:12:40 GMT
expires: Wed, 13 Sep 2023 05:12:40 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040
94.100.180.39404 Not Found 20 kB URL HTTP/1.1 my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040
IP 94.100.180.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65067)
Hash 7748e0604e7688e154d2bb06d2eb4e0e
07606d347da0af720717593108ca7fe64a6f0b23
52bda67cbd4003800f96965cdbcb94ecd16db83f406f313ee4215f5c041423a5
GET /mail/gottsu07/video/embed/_myvideo/1040 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9561
Expires: Sat, 17 Dec 2022 07:52:01 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042
94.100.180.39404 Not Found 20 kB URL HTTP/1.1 my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042
IP 94.100.180.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65067)
Hash 7748e0604e7688e154d2bb06d2eb4e0e
07606d347da0af720717593108ca7fe64a6f0b23
52bda67cbd4003800f96965cdbcb94ecd16db83f406f313ee4215f5c041423a5
GET /mail/gottsu07/video/embed/_myvideo/1042 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302bca8b4776eca1d6dc94dfc7822bd9
3be17682c8639eda9854fbc8b21f5e43efdce33d
ae8438d6acbef18faace93a4421beb91356ad1290621032183a002d6c2151de3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE8438D6ACBEF18FAACE93A4421BEB91356AD1290621032183A002D6C2151DE3"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9561
Expires: Sat, 17 Dec 2022 07:52:01 GMT
Date: Sat, 17 Dec 2022 05:12:40 GMT
Connection: keep-alive
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.es.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.es.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033)
Hash df9f1c904ed2c721599e1807ce50e10c
0ff0dd277a16bca1a9da1994fa40b505a3918f0c
b9efa6faa4fc0f00035eaeb0d0c6044aa62131568d3f1dcd6c0da4a69965f674
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.es.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1736
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 17 Dec 2022 05:12:40 GMT
Etag: "fa4af18a6c068f0092b0e7636c87e143+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F716)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13990
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fae5a52ce167de2a060dc814a744e98
4b108a79a4ad796a34f4b2b8950df907137680e3
61e1fe4a8c074a031e0628ca393449e42d70dcf3411481936c26c1fad7a5451b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F716d5374-26a4-47e3-9c6a-62120a177040.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9837
x-amzn-requestid: 7c104466-a4d8-4e03-94e6-79a18bd3bf54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjWiEMlIAMFaaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce5c3-4b0e776f4f0edd533795a6ee;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XlYdfi_9fWjFtw83t9kvwNEzkpJSpsCtlZS3RLmUkk6FZqzVDvaIOg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 22:00:56 GMT
age: 25904
etag: "4b108a79a4ad796a34f4b2b8950df907137680e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7eb005-df5e-4ad5-ab59-6dd5673202b8.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7eb005-df5e-4ad5-ab59-6dd5673202b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11eb1a344e317c9805c0ecf1643e4a04
cdd0dd4300113cee0eff7dd9b5fe2c9eb411f07a
fc563a02dcd5eb90bde7d056bf8a832254c22b1d4baa7cabd83793b9a0edb47f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce7eb005-df5e-4ad5-ab59-6dd5673202b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8915
x-amzn-requestid: c83c95c2-600e-4e2b-bcda-916a57f9f53d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC6HmlIAMF8Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-1678e01c32f054c665efd888;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AI1855uSgfHBqHOM_3xw8_HElfbuvQeFSCEurj8s-yRmUM_7FUrv9g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:46:47 GMT
age: 26753
etag: "cdd0dd4300113cee0eff7dd9b5fe2c9eb411f07a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65c9cdbb-21b2-465b-8f75-329260ada5cc.webp
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65c9cdbb-21b2-465b-8f75-329260ada5cc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86be9c16e4a62785e7f3a0cc8a956143
6cac191c918ff47d3e66e327e8c8a9c0fec9a88b
81dfec15eb1dc19acae5071663b9deaa9fa11f00378e36871c5b31a548a0626b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65c9cdbb-21b2-465b-8f75-329260ada5cc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8002
x-amzn-requestid: bcaeff23-947f-441a-8aea-1e0d54f2cc3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjD7GjdoAMFVIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce54c-5fb0d9d76945c4f63d210806;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lTaL4VGiiP30sAgykA1UmFV6qxCbS_3Aa5mXbKTwkG6deggokEkZFw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 22:01:03 GMT
age: 25897
etag: "6cac191c918ff47d3e66e327e8c8a9c0fec9a88b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 33b0bd5f9273f761a4c1cae77f218f85
f6ddbb356a6822ad307ad6db76b3acef505eed4b
833f0383497da1737425c56e917231d686f7cef3df11c586c47b7be9c77b135d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 21 Dec 2022 04:01:51 GMT
ETag: "f6ddbb356a6822ad307ad6db76b3acef505eed4b"
Last-Modified: Sat, 17 Dec 2022 04:01:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1225
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a478b4b0b45-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
IP 34.120.237.76:0
Hash 09923c911faea99f3e7d2c59b824fd77
b4c06de2219b1d65dd841d2da1baa3cfb04d9203
bb5427b4c57acfc0f6ccd882ead7aa1951e0a92ac5b2751b8b7386ed2345066c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: f8f1832c-4269-4c4b-83c0-4c2d8c2fdd8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7GLSIAMFd4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-4c54f9704a32da245a90ab0d;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CrmrekFQeOTjAkIBgbGSNGN66ysdrtGK1uuzJV-b6nB1WFrOrtf1OA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 21:40:19 GMT
age: 27141
etag: "379f7844a18284958ec0250cc45f2c91ac1ddfcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac96a0cab4c96df122836bceb4850207
661d83a82eadfe8b2582a0550f6f1fd8af550695
a611f9d423d24a7461aea0d50d8bf1730ac24ab368f5f240349fa983a670fa03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F631cb6d2-ac62-4b2c-8cf0-7c83deae0f02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4922
x-amzn-requestid: 5a9012c0-7e02-4e57-86d1-f7c26e0b1bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6x46FAUoAMFybQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63943038-3c4f698f3de141125950ebca;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:07:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lzHRuxO8gwcgtfLaEZOJZTD0Y8MpD6jlV1DCO7bfoN9TGgapqDMNvw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 15:09:00 GMT
age: 54997
etag: "661d83a82eadfe8b2582a0550f6f1fd8af550695"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfe9d995-0778-4444-81cd-99e5198ac11e.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfe9d995-0778-4444-81cd-99e5198ac11e.jpeg
IP 34.120.237.76:0
Hash 3c858d3bff4755ed81d9f4468e9170ef
436d3047bd0da243c60fb3047ca8d4aa120207f6
783876ea033420247e3b76443a4b10631c8eb843ad852ceaf8ba2ae5f739b7a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfe9d995-0778-4444-81cd-99e5198ac11e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3953
x-amzn-requestid: e528941a-b54c-4275-bce0-91f4c9dd7f2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c0NMpGvxoAMFmRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63918f1d-573aec4e11da97b91c9cd289;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 07:15:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EGZUDmBOdV3YlJvSlesXi32pbRvM-9nD3BDIcceYMjPG0vlNvKD1-A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 06:47:00 GMT
age: 80740
etag: "93ece0b291bd44a399612b832d8c7e9767ba3ce9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 33b0bd5f9273f761a4c1cae77f218f85
f6ddbb356a6822ad307ad6db76b3acef505eed4b
833f0383497da1737425c56e917231d686f7cef3df11c586c47b7be9c77b135d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:40 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 21 Dec 2022 04:01:51 GMT
ETag: "f6ddbb356a6822ad307ad6db76b3acef505eed4b"
Last-Modified: Sat, 17 Dec 2022 04:01:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1225
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a479c43b503-OSL
ok.ru/res/js/app/capture_5f689327.js
5.61.23.11200 OK 675 B URL HTTP/2 ok.ru/res/js/app/capture_5f689327.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (1522)
Hash 0662bfa0b482394ccde3a3471903b82e
e4c8f1a990e7dcaac87bcfd9067928f234f80e3a
dc2c91380f47fbf65b1860daffea9d480b095ca121d72418cbcfd1b0238ede6d
GET /res/js/app/capture_5f689327.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997680200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
content-length: 675
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:40 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
77.88.21.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 77.88.21.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash b604b44a44140d3e443d1c1c9da02d8d
05407447253dbbd694e67456c6b25b5112bd359d
0dcc105aceee70b68e812bdb6033ab465720efe541259c35f19aa09fadc88bf8
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73737
date: Sat, 17 Dec 2022 05:12:40 GMT
access-control-allow-origin: *
etag: "639bee03-12009"
expires: Sat, 17 Dec 2022 06:12:40 GMT
last-modified: Fri, 16 Dec 2022 07:03:15 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ok.ru/res/js/app/VideoEmbed_bc0da08a.js
5.61.23.11200 OK 360 B URL HTTP/2 ok.ru/res/js/app/VideoEmbed_bc0da08a.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (825)
Hash 5c3d7116fc8951a7fdcd7909dc3a15f3
054bf8af4b66c4c0924619d040d3cf446ffae37b
5c2d84d52609fff99f561cdb2876c1a6554ee4c7db52bd694342c6dbe4b5fde7
GET /res/js/app/VideoEmbed_bc0da08a.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997680200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
content-length: 360
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:40 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
ok.ru/res/js/app/OKVideo_2974a142.js
5.61.23.11200 OK 5.3 kB URL HTTP/2 ok.ru/res/js/app/OKVideo_2974a142.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (16082)
Hash 3499abb59944e95514f8a3600a7e68be
ca1f87de928067c11c6fbbae779783b2529e789b
bb6b8a2774c69ba50604ff23e3ddfbd6d279ed32464b438a78d388d22a30208b
GET /res/js/app/OKVideo_2974a142.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997680200
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
content-length: 5344
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:40 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41f15a2869e5574199bffce0d2c298b0
d7b59e7d9e3fbe8191642ae1a2ff5f552580b50f
707fd64eebcc88bf2318dba1048fa89e28c1227e25b1327fc12d06e5ebfeac57
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6537
Cache-Control: max-age=90425
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:41 GMT
Etag: "639bf479-1d7"
Expires: Sun, 18 Dec 2022 06:19:46 GMT
Last-Modified: Fri, 16 Dec 2022 04:30:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41f15a2869e5574199bffce0d2c298b0
d7b59e7d9e3fbe8191642ae1a2ff5f552580b50f
707fd64eebcc88bf2318dba1048fa89e28c1227e25b1327fc12d06e5ebfeac57
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6537
Cache-Control: max-age=90425
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:41 GMT
Etag: "639bf479-1d7"
Expires: Sun, 18 Dec 2022 06:19:46 GMT
Last-Modified: Fri, 16 Dec 2022 04:30:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41f15a2869e5574199bffce0d2c298b0
d7b59e7d9e3fbe8191642ae1a2ff5f552580b50f
707fd64eebcc88bf2318dba1048fa89e28c1227e25b1327fc12d06e5ebfeac57
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6537
Cache-Control: max-age=90425
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:41 GMT
Etag: "639bf479-1d7"
Expires: Sun, 18 Dec 2022 06:19:46 GMT
Last-Modified: Fri, 16 Dec 2022 04:30:49 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41f15a2869e5574199bffce0d2c298b0
d7b59e7d9e3fbe8191642ae1a2ff5f552580b50f
707fd64eebcc88bf2318dba1048fa89e28c1227e25b1327fc12d06e5ebfeac57
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6537
Cache-Control: max-age=90425
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:41 GMT
Etag: "639bf479-1d7"
Expires: Sun, 18 Dec 2022 06:19:46 GMT
Last-Modified: Fri, 16 Dec 2022 04:30:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ok.ru/res/js/lib/jquery-1.8.3_699b1ac6.js
5.61.23.11200 OK 30 kB URL HTTP/2 ok.ru/res/js/lib/jquery-1.8.3_699b1ac6.js
IP 5.61.23.11:0
File type Unicode text, UTF-8 text, with very long lines (36291)
Hash c9ec089128fe701595e679c379cb04d4
448432aab6126c99f96fbfcd560458e6e4bd8cf6
5a7fad0f634f88c51358f65491dc20f0e42b57c70d6fe9007c53645757ebbbdb
GET /res/js/lib/jquery-1.8.3_699b1ac6.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript
content-length: 29958
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
my2.imgsmail.ru/mail/ru/css/new/video/embed_rev2d2919013c.css
185.5.137.202200 OK 8.6 kB URL HTTP/1.1 my2.imgsmail.ru/mail/ru/css/new/video/embed_rev2d2919013c.css
IP 185.5.137.202:0
File type ASCII text, with very long lines (64513)
Hash 876453e280d838363520dea5afb2220b
fd9d13dca5067854a01a8a1ed6bdfe2bfde82bfb
bad392d309f9524eda072071dc45d5a7ee97e7064a40ed40fade2fe23a89e60f
GET /mail/ru/css/new/video/embed_rev2d2919013c.css HTTP/1.1
Host: my2.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:41 GMT
Content-Type: text/css
Last-Modified: Wed, 14 Dec 2022 13:52:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d524-fc02"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ok.ru/res/js/b/primary_438edfa.js
5.61.23.11200 OK 26 kB URL HTTP/2 ok.ru/res/js/b/primary_438edfa.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (55101)
Hash 42d2b38949098e833414c9e2ae9f72da
036c11e23b560fb68ab08e8438e736ee1710270b
21147eb60f074a465e1bd137f06d08b0819bb8765e1ac9ab362a807c1db478ee
GET /res/js/b/primary_438edfa.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript
content-length: 25587
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
ok.ru/res/js/b/music2_1b220cb7.js
5.61.23.11200 OK 3.9 kB URL HTTP/2 ok.ru/res/js/b/music2_1b220cb7.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (13213)
Hash ffc8c12273aa782d2217667237a265fe
bfdef1e684867efec95882a0b9bd6583df73e4c0
bc49a4051c5ef911c3ed414e6fc4e8d96bc4c32e1d2d4ae10f32f8676068c0e0
GET /res/js/b/music2_1b220cb7.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript
content-length: 3941
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
st.mycdn.me/static/MegaPlayer/10-11-67/flashDetect.swf
217.20.155.82200 OK 424 B URL HTTP/2 st.mycdn.me/static/MegaPlayer/10-11-67/flashDetect.swf
IP 217.20.155.82:0
File type Macromedia Flash data (compressed), version 10\012- data
Hash 06c338f8a657bf5c6419ba4ab5964032
e4aa29797303e264067dc302a51d02f48b22ef2c
e94bf27d60e9ba64f079e8dcc296a1e12bcdf0bf8d189a7b1bceadcae979695a
GET /static/MegaPlayer/10-11-67/flashDetect.swf HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/x-shockwave-flash
content-length: 424
last-modified: Thu, 17 Mar 2022 08:14:04 GMT
vary: Accept-Encoding
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
st.mycdn.me/static/MegaPlayer/10-11-67/okVideoPlayerUtils.min.js
217.20.155.82200 OK 3.6 kB URL HTTP/2 st.mycdn.me/static/MegaPlayer/10-11-67/okVideoPlayerUtils.min.js
IP 217.20.155.82:0
File type ASCII text, with very long lines (7596)
Hash b66660e083b501d798db02ada7ad6d36
138f4e9ac69aaa70c13f02110d2f1d27051b473c
e6c61980995a32bf25e2490d0ad4ab05d2eb60d9c1618834afa32bad2c2b51f4
GET /static/MegaPlayer/10-11-67/okVideoPlayerUtils.min.js HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 08:14:04 GMT
vary: Accept-Encoding
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=o6yd271274rj884373793m5h4abvu363
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=o6yd271274rj884373793m5h4abvu363
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash c15a2ca610b15070d6ab4e1804c9d24c
4ddc92ad7243b74f1b9e3006bb47083095b11310
d0a9d12086139ef96f04da70c3a538b1121891509345cdc5f45ab84fff5617b6
GET /gid.js?userId=o6yd271274rj884373793m5h4abvu363 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Cookie: ID=2e9d53484e9c46e1b9d45a16eae22830
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gnula.nu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2e9d53484e9c46e1b9d45a16eae22830; expires=Sun, 17 Dec 2023 05:12:41 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ok.ru/res/js/app/GwtConfig_609c2106.js
5.61.23.11200 OK 341 B URL HTTP/2 ok.ru/res/js/app/GwtConfig_609c2106.js
IP 5.61.23.11:0
File type ASCII text, with very long lines (551)
Hash 989a5cfe3580dc7a4dda333684b4921d
8374be1f5bc50ab9cf9d24fd00b71d8fbcb0817b
ee0fa52170ad4a91f0178ea3b1326b65dd5c8dc72ad4a46dd76f797d3d2430fa
GET /res/js/app/GwtConfig_609c2106.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript
content-length: 341
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
ok.ru/res/js/lib/noext_2f9c7b37.js
5.61.23.11200 OK 293 B URL HTTP/2 ok.ru/res/js/lib/noext_2f9c7b37.js
IP 5.61.23.11:0
Hash b8a297ed2464300416ef44e35c7c2538
20f9f47063cfb766f0d838c0855377eeed7c72dc
a8e99ebcaf3ba67af9abdbcde2b325950916eb30e4ceaf5aa109164a53155655
GET /res/js/lib/noext_2f9c7b37.js HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/javascript
content-length: 293
last-modified: Wed, 14 Dec 2022 14:22:00 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:41 GMT
cache-control: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 1f6c144927e3b18bbe4dd3411a203a4a
5c377feadc36816ae8cde3358519ac371c4f0fa6
5df77d1d3c7a1b2fb078f5024a85c9f3d95cf8b847c0343bb525a9b026c65431
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:41 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 21 Dec 2022 02:32:35 GMT
ETag: "5c377feadc36816ae8cde3358519ac371c4f0fa6"
Last-Modified: Sat, 17 Dec 2022 02:32:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1267
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a4de97e0b61-OSL
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 17 Dec 2022 05:12:42 GMT
access-control-allow-origin: *
etag: "639bee03-2b"
expires: Sat, 17 Dec 2022 06:12:42 GMT
accept-ranges: bytes
last-modified: Fri, 16 Dec 2022 07:03:15 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=o6yd271274rj884373793m5h4abvu363
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=o6yd271274rj884373793m5h4abvu363
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash c15a2ca610b15070d6ab4e1804c9d24c
4ddc92ad7243b74f1b9e3006bb47083095b11310
d0a9d12086139ef96f04da70c3a538b1121891509345cdc5f45ab84fff5617b6
GET /gid.js?userId=o6yd271274rj884373793m5h4abvu363 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Cookie: ID=2e9d53484e9c46e1b9d45a16eae22830
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gnula.nu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2e9d53484e9c46e1b9d45a16eae22830; expires=Sun, 17 Dec 2023 05:12:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
grunoaph.net/?rb=hiFokJVEXaAbGJUIWZQlHEPlNYSpEOrPwxEeaLTG-dqO-GP7d4kVW5gAmfeH76N_jd7qK0w8qbK81HHDp40P7myo9uDVjQM8-1IWQsNny37N706L8h0QtUND0_xNjJVXgB9Pr8OE_MSsVym8Yhzn6XHyZtXOG3P8CNECC8feyUvxoTtElQn-GpIH5pdS31rA7zeypzP_BrMrdFoionVQLnymedZDM5U3lNMZsK3hyfw%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=14&pl=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=3ebd9625-bfc3-45c1-9877-85c2da1da8f3&userId=o6yd271274rj884373793m5h4abvu363&m=link
139.45.197.238200 OK 11 kB URL HTTP/2 grunoaph.net/?rb=hiFokJVEXaAbGJUIWZQlHEPlNYSpEOrPwxEeaLTG-dqO-GP7d4kVW5gAmfeH76N_jd7qK0w8qbK81HHDp40P7myo9uDVjQM8-1IWQsNny37N706L8h0QtUND0_xNjJVXgB9Pr8OE_MSsVym8Yhzn6XHyZtXOG3P8CNECC8feyUvxoTtElQn-GpIH5pdS31rA7zeypzP_BrMrdFoionVQLnymedZDM5U3lNMZsK3hyfw%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=14&pl=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=3ebd9625-bfc3-45c1-9877-85c2da1da8f3&userId=o6yd271274rj884373793m5h4abvu363&m=link
IP 139.45.197.238:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (32468), with no line terminators
Hash dcf149417fa7ce2a62ad8842a486631a
45ca0e76e0b29e97a4cceaa5b271e422d240ffbe
a1cdc8d8b77bf307e339f77f20ba1d938d85e819378583a385c7f5177d0951c3
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=hiFokJVEXaAbGJUIWZQlHEPlNYSpEOrPwxEeaLTG-dqO-GP7d4kVW5gAmfeH76N_jd7qK0w8qbK81HHDp40P7myo9uDVjQM8-1IWQsNny37N706L8h0QtUND0_xNjJVXgB9Pr8OE_MSsVym8Yhzn6XHyZtXOG3P8CNECC8feyUvxoTtElQn-GpIH5pdS31rA7zeypzP_BrMrdFoionVQLnymedZDM5U3lNMZsK3hyfw%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=14&pl=https%3A%2F%2Fgnula.nu%2Fcomedia-gamberra%2Fver-21-and-over-2013-online%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=3ebd9625-bfc3-45c1-9877-85c2da1da8f3&userId=o6yd271274rj884373793m5h4abvu363&m=link HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gnula.nu/
Origin: https://gnula.nu
Connection: keep-alive
Cookie: OAID=2e9d53484e9c46e1b9d45a16eae22830; oaidts=1671253960
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: application/json
x-trace-id: 6b3f9778d847078fe725c0c78d77015f
access-control-allow-origin: https://gnula.nu
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=o6yd271274rj884373793m5h4abvu363; expires=Sun, 17 Dec 2023 05:12:41 GMT; path=/; secure; SameSite=None
oaidts=1671253961; expires=Sun, 17 Dec 2023 05:12:41 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 24 Dec 2022 05:12:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/bundles/all_revf4a1ea0219.js
185.5.137.209200 OK 471 B URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/bundles/all_revf4a1ea0219.js
IP 185.5.137.209:0
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
GET /mail/ru/images/js/myjs/mm/out/min/bundles/all_revf4a1ea0219.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:41 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-51228"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&_u=YEBAAUAAAAAAACAAI~&z=1598177367
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&_u=YEBAAUAAAAAAACAAI~&z=1598177367
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1432325075.1671253957&jid=199026011&_u=YEBAAUAAAAAAACAAI~&z=1598177367 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 17 Dec 2022 05:12:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8b1f3ab941f9af9d95c8b8de3919330c
581032c8d194a696e353070d25165321504c0176
852cc4977786c9e7c01867e8d4fafc93fa44fd1c4c6d25a9986cf6856aff991c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 17 Dec 2022 05:12:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749
95.163.52.67302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749
IP 95.163.52.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978
95.163.52.67302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978
IP 95.163.52.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482
95.163.52.67302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482
IP 95.163.52.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958974%3A1671253958976%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.4257538079082749 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.mail.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958979%3A1671253958980%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.2950298423893978 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.mail.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1671253958984%3A1671253958985%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.9922414266866482 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://my.mail.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956801/////402/404/415/415/616/484/616/726/790/836/1320/1748/1749/2337/2337/;ni=;lvid=1671253958974%3A1671253959142%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.8867768822396693;e=RT/load;et=1671253959139
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956801/////402/404/415/415/616/484/616/726/790/836/1320/1748/1749/2337/2337/;ni=;lvid=1671253958974%3A1671253959142%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.8867768822396693;e=RT/load;et=1671253959139
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956801/////402/404/415/415/616/484/616/726/790/836/1320/1748/1749/2337/2337/;ni=;lvid=1671253958974%3A1671253959142%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.8867768822396693;e=RT/load;et=1671253959139 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/libs/plugins/jquery.mousewheel_revff85fd8484.js
185.5.137.209200 OK 1.1 kB URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/libs/plugins/jquery.mousewheel_revff85fd8484.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (2609), with no line terminators
Hash 3a7bd68f41df63e53b30ec674902c2ad
de1d602bbfa18707daf8f06635f1a23f09fc0ed7
22e605358dfef6baed009a67d556997c03c116db83ea8adc5f5384fd3c4553c5
GET /mail/ru/images/js/myjs/mm/out/min/libs/plugins/jquery.mousewheel_revff85fd8484.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-a31"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/main_rev5ba5c94e99.js
185.5.137.209200 OK 943 B URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/main_rev5ba5c94e99.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (943), with no line terminators
Hash 0101ceef778029fc4f64fd2806388a8e
24f61c02b8f317c20a0d4bec4abf0a04c7a93999
319519db62ff004727cd6c2cfcdc8ecfd5bcd40503c0c9292e414ecc41c564c3
GET /mail/ru/images/js/myjs/mm/out/min/video/embed/main_rev5ba5c94e99.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Content-Length: 943
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Connection: keep-alive
ETag: "6399d523-3af"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Accept-Ranges: bytes
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958974%3A1671253959152%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.2542748260058707;e=detect
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958974%3A1671253959152%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.2542748260058707;e=detect
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041;st=1671253958121;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=5b76f954b9bd8680;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958974%3A1671253959152%3A0%3A5d1c7740ce239cda2172d821ae512eda;visible=true;_=0.2542748260058707;e=detect HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956802/////387/389/414/414/646/496/646/800/875/883/1324/1794/1794/2351/2351/;ni=;lvid=1671253958979%3A1671253959155%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.5675582216137302;e=RT/load;et=1671253959155
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956802/////387/389/414/414/646/496/646/800/875/883/1324/1794/1794/2351/2351/;ni=;lvid=1671253958979%3A1671253959155%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.5675582216137302;e=RT/load;et=1671253959155
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956802/////387/389/414/414/646/496/646/800/875/883/1324/1794/1794/2351/2351/;ni=;lvid=1671253958979%3A1671253959155%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.5675582216137302;e=RT/load;et=1671253959155 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956800/////379/382/416/416/647/495/648/765/840/856/1324/1797/1798/2355/2355/;ni=;lvid=1671253958984%3A1671253959157%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.24400542491551125;e=RT/load;et=1671253959157
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956800/////379/382/416/416/647/495/648/765/840/856/1324/1797/1798/2355/2355/;ni=;lvid=1671253958984%3A1671253959157%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.24400542491551125;e=RT/load;et=1671253959157
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1671253956800/////379/382/416/416/647/495/648/765/840/856/1324/1797/1798/2355/2355/;ni=;lvid=1671253958984%3A1671253959157%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.24400542491551125;e=RT/load;et=1671253959157 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958979%3A1671253959191%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.7084280835610778;e=detect
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958979%3A1671253959191%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.7084280835610778;e=detect
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042;st=1671253958126;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=873d8f585ca8ef2d;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958979%3A1671253959191%3A0%3A7ec421972abed7755c6011a0611ac92c;visible=true;_=0.7084280835610778;e=detect HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/player_rev9701da092c.js
185.5.137.209200 OK 564 B URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/player_rev9701da092c.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (1285), with no line terminators
Hash 7393e56951a6e07634f1ad49698e1a01
1e59ec3209c7546245d9b3be7c12191e5190ed87
95383780d02c00202c5d564c851db3bc3836508740b576947d3c8d4ffb5f07de
GET /mail/ru/images/js/myjs/mm/out/min/video/embed/player_rev9701da092c.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-505"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/yandex-api_rev5ba5c94e99.js
185.5.137.209200 OK 1.3 kB URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video/embed/yandex-api_rev5ba5c94e99.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (5122), with no line terminators
Hash ee4e4f6a9fde100069da51ae8c645fa1
a1286e1aa8ceaba47887d29eab9847f8b8d08706
252128c5b82911ee42e1114c9dac708897cfc122d19e8ea3c9faf9625ec4a0bf
GET /mail/ru/images/js/myjs/mm/out/min/video/embed/yandex-api_rev5ba5c94e99.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-1402"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253959195%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.3770513431539404;e=detect
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253959195%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.3770513431539404;e=detect
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253959195%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.3770513431539404;e=detect HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 11e20a48cc2fc377814c1f72459ae875
fb5454f921e6622fdb553996771eba0a3498b262
66aa15f3d133a589de343649a49c4e8805f0c03adf0e1caec51ef8273be30892
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 21 Dec 2022 05:12:41 GMT
ETag: "fb5454f921e6622fdb553996771eba0a3498b262"
Last-Modified: Sat, 17 Dec 2022 05:12:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a4fad1c0b45-OSL
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/libs/plugins/swfobject.js
185.5.137.209200 OK 3.8 kB URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/libs/plugins/swfobject.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (9186), with no line terminators
Hash 20da75f0f37a2a6aa3fbe85fd7965c30
9cfe3c6a4bc0218f7f9503f969788add42f7a898
a1bfcb63bd46bc411049af1f97399c7200f06d788ac74ce87bce40ca5dbb1853
GET /mail/ru/images/js/myjs/mm/out/min/libs/plugins/swfobject.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-23e2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video-html5/flash_revd2a1fd5fe8.js
185.5.137.209200 OK 1.4 kB URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video-html5/flash_revd2a1fd5fe8.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (3782), with no line terminators
Hash e52951e8f3a2185713c29b2840e9e6dd
81429e7199d0a98e9d99ab7cdff65f3953b69b3c
58ffbca7c5558a5fe898ad5f56e16d98c8b4543c3891ffb5ae0d84f440d008e2
GET /mail/ru/images/js/myjs/mm/out/min/video-html5/flash_revd2a1fd5fe8.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-ec6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 11e20a48cc2fc377814c1f72459ae875
fb5454f921e6622fdb553996771eba0a3498b262
66aa15f3d133a589de343649a49c4e8805f0c03adf0e1caec51ef8273be30892
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 21 Dec 2022 05:12:41 GMT
ETag: "fb5454f921e6622fdb553996771eba0a3498b262"
Last-Modified: Sat, 17 Dec 2022 05:12:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a4f98aeb4f1-OSL
my.mail.ru/dstat?random=132&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/dstat?random=132&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /dstat?random=132&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}} HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video-html5/tmpl/flash_rev9701da092c.js
185.5.137.209200 OK 397 B URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/video-html5/tmpl/flash_rev9701da092c.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (397), with no line terminators
Hash 384c662066dc601d64c3fdc487150a8f
8316a4ee25c0f7e6683ba249554c248ec5707350
f68c386a2e0a4cc9922b185fde5c32a61a0de6c42be508be3f19cfe5c0a7d17f
GET /mail/ru/images/js/myjs/mm/out/min/video-html5/tmpl/flash_rev9701da092c.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Content-Length: 397
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Connection: keep-alive
ETag: "6399d523-18d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Accept-Ranges: bytes
my.mail.ru/dstat?random=212&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/dstat?random=212&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /dstat?random=212&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}} HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
my.mail.ru/dstat?random=991&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/dstat?random=991&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}}
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /dstat?random=991&json={%22version%22:1,%22category%22:{%22mm-player%22:{%22action%22:5,%22authorized%22:false,%22user%22:%22mozilla%22,%22duration%22:0,%22platform%22:%22win%22,%22cdn%22:%22%22}}} HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/bundles/tmpl_revc6f27588fd.js
185.5.137.209200 OK 5.7 kB URL HTTP/1.1 my4.imgsmail.ru/mail/ru/images/js/myjs/mm/out/min/bundles/tmpl_revc6f27588fd.js
IP 185.5.137.209:0
File type ASCII text, with very long lines (19035), with no line terminators
Hash 1601a71a48fac26138942b0c2e216116
7235aab5cbe31e402a83b0de8c50cf37b1c8100d
199e28c0b6b88ec85cdf61209f46eddb87dfcb4aafca5bbff92b0b79b5581f6d
GET /mail/ru/images/js/myjs/mm/out/min/bundles/tmpl_revc6f27588fd.js HTTP/1.1
Host: my4.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/javascript
Last-Modified: Wed, 14 Dec 2022 13:52:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6399d523-4a5b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 11e20a48cc2fc377814c1f72459ae875
fb5454f921e6622fdb553996771eba0a3498b262
66aa15f3d133a589de343649a49c4e8805f0c03adf0e1caec51ef8273be30892
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 21 Dec 2022 05:12:41 GMT
ETag: "fb5454f921e6622fdb553996771eba0a3498b262"
Last-Modified: Sat, 17 Dec 2022 05:12:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77ad2a4fafb4b503-OSL
my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.1379198440619922
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.1379198440619922
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /grstat?name=uvp3.flashversion.0&r=0.1379198440619922 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1042
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
46.61.151.250200 OK 238 B URL HTTP/2 s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
IP 46.61.151.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3a539cdd6a8d193fce07d3e2a1836902
dbfcabf31d5729c6584e7b1f6242babfb2e261cd
9231a77ce2054310458db0f9f81a3c46f05c1bf8f00729c5d15cb6fb61e3fea5
GET /modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru HTTP/1.1
Host: s3.multipulter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimple.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.16.1
date: Sat, 17 Dec 2022 05:25:37 GMT
content-type: text/html
content-length: 238
cache-control: max-age=60
content-encoding: gzip
last-modified: Wed, 13 Oct 2021 12:55:49 GMT
etag: "c187a2a531c0d71:0"
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.8086079317542448
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.8086079317542448
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /grstat?name=uvp3.flashversion.0&r=0.8086079317542448 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.5038350133978764
94.100.180.39200 OK 43 B URL HTTP/1.1 my.mail.ru/grstat?name=uvp3.flashversion.0&r=0.5038350133978764
IP 94.100.180.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /grstat?name=uvp3.flashversion.0&r=0.5038350133978764 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/mail/gottsu07/video/embed/_myvideo/1041
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 17 Dec 2022 05:12:42 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
46.61.151.250200 OK 238 B URL HTTP/2 s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
IP 46.61.151.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3a539cdd6a8d193fce07d3e2a1836902
dbfcabf31d5729c6584e7b1f6242babfb2e261cd
9231a77ce2054310458db0f9f81a3c46f05c1bf8f00729c5d15cb6fb61e3fea5
GET /modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru HTTP/1.1
Host: s3.multipulter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimple.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.16.1
date: Sat, 17 Dec 2022 05:25:37 GMT
content-type: text/html
content-length: 238
cache-control: max-age=60
content-encoding: gzip
last-modified: Wed, 13 Oct 2021 12:55:49 GMT
etag: "c187a2a531c0d71:0"
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
46.61.151.250200 OK 238 B URL HTTP/2 s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
IP 46.61.151.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3a539cdd6a8d193fce07d3e2a1836902
dbfcabf31d5729c6584e7b1f6242babfb2e261cd
9231a77ce2054310458db0f9f81a3c46f05c1bf8f00729c5d15cb6fb61e3fea5
GET /modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru HTTP/1.1
Host: s3.multipulter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimple.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.16.1
date: Sat, 17 Dec 2022 05:25:37 GMT
content-type: text/html
content-length: 238
cache-control: max-age=60
content-encoding: gzip
last-modified: Wed, 13 Oct 2021 12:55:49 GMT
etag: "c187a2a531c0d71:0"
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
st.mycdn.me/static/music/0-4-17/model.js
217.20.155.82200 OK 18 kB URL HTTP/2 st.mycdn.me/static/music/0-4-17/model.js
IP 217.20.155.82:0
File type ASCII text, with very long lines (46840)
Hash 1a6847df7721b5529355ce339fdd7929
4a36a4ba1242df9170df5d911b0020a8966b761a
0ff0f27b387e1b773bfc9aa32ccdb086dacc7055c677a06be2177b8bb2996c58
GET /static/music/0-4-17/model.js HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 18390
last-modified: Tue, 29 Nov 2022 12:37:39 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 17 Dec 2023 05:12:44 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
ok.ru/web-api/pts/video.player/en
5.61.23.11200 OK 4.5 kB URL HTTP/2 ok.ru/web-api/pts/video.player/en
IP 5.61.23.11:0
File type Unicode text, UTF-8 text, with very long lines (4931), with no line terminators
Hash 0f66ea355e8f3c815274fdcbb0370fa0
30708651fd8426171c8fb5e4f57fa277c74e2c87
e75afea963f6f6de650e5c5450616975f09eb2f7e0d0b62d201c4a386ac1f0f6
GET /web-api/pts/video.player/en HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ok.ru/videoembed/87997614664
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:41 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: bci=-6352628989237834960; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:48 GMT; Path=/; Secure; HttpOnly
_statid=45bb5af9-8022-4276-a4f7-8ca0f416a803; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:48 GMT; Path=/; Secure; HttpOnly
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
etag: W/"14a2eaa0cdc4e00c529dff3699717801"
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87983786568&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A669463393%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A432209901%3Arqn%3A2%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C33%2C0%2C%2C307%2C0%2C1650%2C1650%2C1%2C814%3Aco%3A0%3Ans%3A1671253956803%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 400 B URL HTTP/2 mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87983786568&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A669463393%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A432209901%3Arqn%3A2%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C33%2C0%2C%2C307%2C0%2C1650%2C1650%2C1%2C814%3Aco%3A0%3Ans%3A1671253956803%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 46efaa01ab7500dd879e8ad402490998
e8f59d112b2f193f3612fd7b7cafbfe99e0507a8
eba9915638f9e9372de6b6951dd590a6ea27bd37648b53d29b8d0dc93038f509
GET /watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87983786568&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A669463393%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A432209901%3Arqn%3A2%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C33%2C0%2C%2C307%2C0%2C1650%2C1650%2C1%2C814%3Aco%3A0%3Ans%3A1671253956803%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ok.ru
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/87663567/1?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87983786568&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A669463393%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A432209901%3Arqn%3A2%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C33%2C0%2C%2C307%2C0%2C1650%2C1650%2C1%2C814%3Aco%3A0%3Ans%3A1671253956803%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29re%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 17 Dec 2022 05:12:44 GMT
access-control-allow-origin: https://ok.ru
set-cookie: yabs-sid=1482007471671253964; Path=/; SameSite=None; Secure
i=lnV26TdNBoh4pjpnmYxsC7PVjHkG8pm/pa9OisK74zvyVXmSQ+/QPA81KTHbeiMYA+AghHkJlIVBBJMi8om+aOOktGU=; Expires=Tue, 14-Dec-2032 05:12:38 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6207862531671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6207862531671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1702789964.yc.1671253964#1702789964.yrts.1671253964#1702789964.yrtsi.1671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 17-Dec-2022 05:12:44 GMT
last-modified: Sat, 17-Dec-2022 05:12:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997614664&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A905558279%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A392019100%3Arqn%3A3%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C360%2C0%2C1648%2C1648%2C1%2C815%3Aco%3A0%3Ans%3A1671253956800%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 400 B URL HTTP/2 mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997614664&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A905558279%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A392019100%3Arqn%3A3%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C360%2C0%2C1648%2C1648%2C1%2C815%3Aco%3A0%3Ans%3A1671253956800%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash d1883bb1c48d18a5ee2a1bec99a8ccf7
0de8dcbb6b8c8ab86ec262c6043196c90dde3782
29824ac88e036738decfe82def0739bf066fca6efbf9d0aa18867df6c1bc092b
GET /watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997614664&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A905558279%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A392019100%3Arqn%3A3%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C360%2C0%2C1648%2C1648%2C1%2C815%3Aco%3A0%3Ans%3A1671253956800%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)re(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ok.ru
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/87663567/1?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997614664&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A905558279%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A392019100%3Arqn%3A3%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C360%2C0%2C1648%2C1648%2C1%2C815%3Aco%3A0%3Ans%3A1671253956800%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29re%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 17 Dec 2022 05:12:44 GMT
access-control-allow-origin: https://ok.ru
set-cookie: yabs-sid=1809069341671253964; Path=/; SameSite=None; Secure
i=RSJhwY9pUzVnqqyRqTZt732GJ/SqDWLXAVXJKxuXqyBtb4BVQ3m403PifmbXDO5xyOWJeSo2RbwQ+nTFuGkGtxFcv1A=; Expires=Tue, 14-Dec-2032 05:12:42 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1786537461671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1786537461671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1702789964.yc.1671253964#1702789964.yrts.1671253964#1702789964.yrtsi.1671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 17-Dec-2022 05:12:44 GMT
last-modified: Sat, 17-Dec-2022 05:12:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022bbf88-70e2-4756-9af5-6baabd29e69f.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022bbf88-70e2-4756-9af5-6baabd29e69f.jpeg
IP 34.120.237.76:0
Hash 30d96b1c2827b014bdbdfa4415b79788
fcc5906a5ecc3b9a210118a9e3c97074005b7e0f
2836274924f367959786118e23d6f78a487abe4da11bb45473352345b9b6ca98
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022bbf88-70e2-4756-9af5-6baabd29e69f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6244
x-amzn-requestid: 5aa5608e-832a-411e-b1c7-494276574e56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBW1-F2xIAMFY9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d1bf-2834ab7466c5ec403d33a691;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:01:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3i0INjCd7JFeMeTSUE2kas8dLzoZGmoL1w71CjoZHI_lppO_CRCuNQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Dec 2022 14:23:04 GMT
age: 53383
etag: "003a9883e0264468824059a8abe8d9c26790a710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253964760%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.33863039983657695;e=RT/unload;et=1671253964759;pvt=6635;vtauto=5777
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253964760%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.33863039983657695;e=RT/unload;et=1671253964759;pvt=6635;vtauto=5777
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=2503414;u=https%3A//my.mail.ru/mail/gottsu07/video/embed/_myvideo/1040;st=1671253958124;title=%3A%3A%20video.mail.ru;s=1280*1024;vp=0*0;touch=0;hds=1;frame=1;flash=;sid=4869edda17d2f5b9;ver=60.3.0;tz=0%2FUTC;ni=;detect=1;lvid=1671253958984%3A1671253964760%3A0%3Acbca5f869cd741467a8e1057939439a6;visible=true;_=0.33863039983657695;e=RT/unload;et=1671253964759;pvt=6635;vtauto=5777 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:47 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIE:1671253967:2503414:::; path=/; expires=Mon, 18-Dec-23 05:12:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ok.ru/videoembed/87997614664
5.61.23.11200 OK 0 B URL HTTP/2 ok.ru/videoembed/87997614664
IP 5.61.23.11:0
GET /videoembed/87997614664 HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-7930013246470502587; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
_statid=2ff5c961-83ee-4a23-8e49-aedd668519ba; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
last-modified: Tue, 02 Aug 2022 01:08:54 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: br
X-Firefox-Spdy: h2
player.vimple.ru/iframe/76012c3d48c048afa5eb2878cddeae60
104.21.25.247200 OK 0 B URL HTTP/2 player.vimple.ru/iframe/76012c3d48c048afa5eb2878cddeae60
IP 104.21.25.247:0
GET /iframe/76012c3d48c048afa5eb2878cddeae60 HTTP/1.1
Host: player.vimple.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
set-cookie: UniversalUserID=15650b2baff6451588fe63e618794df0; Expires=Sun, 17 Dec 2023 08:12:43 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None; HttpOnly; Domain=.vimple.ru
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2FKFIr3ppN9Ij%2BZZ8WdTs5DzpzgzI4j7bde4uXT0shVhybNjL9mHKYR1opw4zHBD6SMUWqnhdILXst9ybMwZ3wG5gchrcrUtYsx68Daa0GgPVko3TRqg76vzeOeP6aVhwcZu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ad2a42df1bb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
grunoaph.net/5/5487261/?oo=1&aab=1
139.45.197.238200 OK 0 B URL HTTP/2 grunoaph.net/5/5487261/?oo=1&aab=1
IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /5/5487261/?oo=1&aab=1 HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/json
x-trace-id: 0d6aca36a9f5ccb3717bafe57c1657e9
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://gnula.nu
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=2e9d53484e9c46e1b9d45a16eae22830; expires=Sun, 17 Dec 2023 05:12:40 GMT; path=/; secure; SameSite=None
oaidts=1671253960; expires=Sun, 17 Dec 2023 05:12:40 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997680200&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A644904182%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A343499583%3Arqn%3A1%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C413%2C0%2C1655%2C1655%2C1%2C813%3Aco%3A0%3Ans%3A1671253956802%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997680200&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A644904182%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A343499583%3Arqn%3A1%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C413%2C0%2C1655%2C1655%2C1%2C813%3Aco%3A0%3Ans%3A1671253956802%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
GET /watch/87663567?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997680200&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A644904182%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A343499583%3Arqn%3A1%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C413%2C0%2C1655%2C1655%2C1%2C813%3Aco%3A0%3Ans%3A1671253956802%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ok.ru
Connection: keep-alive
Referer: https://ok.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/87663567/1?wmode=7&page-url=https%3A%2F%2Fok.ru%2Fvideoembed%2F87997680200&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A943%3Acn%3A1%3Adp%3A0%3Als%3A1158205546953%3Ahid%3A644904182%3Az%3A0%3Ai%3A20221217051240%3Aet%3A1671253961%3Arn%3A343499583%3Arqn%3A1%3Au%3A1671253958792576024%3Aw%3A0x0%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Awv%3A2%3Ads%3A0%2C0%2C0%2C%2C32%2C0%2C%2C413%2C0%2C1655%2C1655%2C1%2C813%3Aco%3A0%3Ans%3A1671253956802%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-a81f3b9bcdd80a361c14af38dc09b309-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1671253961%3At%3AOK&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 17 Dec 2022 05:12:44 GMT
access-control-allow-origin: https://ok.ru
set-cookie: yabs-sid=375435451671253964; Path=/; SameSite=None; Secure
i=P2kMi9cjGIU4IBnEk+BAMGScsM+YVEwwDSCUms/WiCwO9bAEu5nbAW8O9rnMRi305IgYxQlncaNVx9tPLoLf444Znuw=; Expires=Tue, 14-Dec-2032 05:12:42 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6981453021671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6981453021671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1702789964.yc.1671253964#1702789964.yrts.1671253964#1702789964.yrtsi.1671253964; Expires=Sun, 17-Dec-2023 05:12:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 17-Dec-2022 05:12:44 GMT
last-modified: Sat, 17-Dec-2022 05:12:44 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ok.ru/videoembed/87983786568
5.61.23.11200 OK 0 B URL HTTP/2 ok.ru/videoembed/87983786568
IP 5.61.23.11:0
GET /videoembed/87983786568 HTTP/1.1
Host: ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-8083821516915898446; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
_statid=96884b68-9493-4bea-880c-ce53fa52ae26; Domain=.ok.ru; Expires=Thu, 04-Jan-2091 08:26:47 GMT; Path=/; Secure; HttpOnly
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob: data:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
last-modified: Thu, 14 Jul 2022 18:40:24 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: br
X-Firefox-Spdy: h2
s3.multipulter.com/modules/advarksprutoplugin.js
46.61.151.250200 OK 0 B URL HTTP/2 s3.multipulter.com/modules/advarksprutoplugin.js
IP 46.61.151.250:0
GET /modules/advarksprutoplugin.js HTTP/1.1
Host: s3.multipulter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimple.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.1
date: Sat, 17 Dec 2022 05:25:37 GMT
content-type: application/javascript
cache-control: max-age=60
content-encoding: gzip
last-modified: Thu, 12 May 2022 23:30:20 GMT
etag: "8aafa03e5866d81:0"
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
videoplayer.ru/ru/player/spruto/sp.js?v=3.0.0.0
188.114.97.1200 OK 0 B URL HTTP/2 videoplayer.ru/ru/player/spruto/sp.js?v=3.0.0.0
IP 188.114.97.1:0
Analyzer Verdict Alert fortinet Malware
GET /ru/player/spruto/sp.js?v=3.0.0.0 HTTP/1.1
Host: videoplayer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimple.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Wed, 01 Jun 2022 19:06:58 GMT
etag: W/"0f515c4ea75d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TlRHnjK%2FB%2FsrXbJq7UtftJIivnRpf%2BcxHlYcLjeVV%2FmqnZY%2FFzgsWRO7TquV4pdlJsUJrk8R5%2BpRZKI5I15dgKXFi%2BDmpZZ0N4EuWDz2%2BeF%2F%2BxFbKhax5L1Tce%2Bp5edjrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ad2a456d390b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3.multipulter.com/modules/ad/frame.js
46.61.151.250200 OK 0 B URL HTTP/2 s3.multipulter.com/modules/ad/frame.js
IP 46.61.151.250:0
GET /modules/ad/frame.js HTTP/1.1
Host: s3.multipulter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s3.multipulter.com/modules/ad/frame.html?origin=https%3A%2F%2Fplayer.vimple.ru
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.16.1
date: Sat, 17 Dec 2022 05:25:37 GMT
content-type: application/javascript
cache-control: max-age=60
content-encoding: gzip
last-modified: Thu, 12 May 2022 23:30:19 GMT
etag: "914063e5866d81:0"
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
polldaddy.com/js/rating/rating.js
192.0.123.249200 OK 0 B URL HTTP/2 polldaddy.com/js/rating/rating.js
IP 192.0.123.249:0
GET /js/rating/rating.js HTTP/1.1
Host: polldaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: application/javascript
last-modified: Mon, 12 Sep 2022 08:38:25 GMT
vary: Accept-Encoding
etag: W/"631ef001-3fe3"
expires: Mon, 16 Jan 2023 05:12:40 GMT
cache-control: max-age=2592000
content-encoding: br
X-Firefox-Spdy: h2
player.vimple.ru/iframe/ce0376ef97ae46c985ec61e00866df3b
104.21.25.247200 OK 0 B URL HTTP/2 player.vimple.ru/iframe/ce0376ef97ae46c985ec61e00866df3b
IP 104.21.25.247:0
GET /iframe/ce0376ef97ae46c985ec61e00866df3b HTTP/1.1
Host: player.vimple.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 17 Dec 2022 05:12:40 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
set-cookie: UniversalUserID=5427edab39254d408d2c2da8df15e1c7; Expires=Sun, 17 Dec 2023 08:12:43 GMT; Max-Age=63072000; Secure; Path=/; SameSite=None; HttpOnly; Domain=.vimple.ru
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PTCx9UO30vXB7tSWCU4uew06MRicAKTps5MTRxtXzAialXsYOxz7Qs2pNDiJoB0qDmOtwL%2Ftw2e39wtH9DJYEiVKpNTj9Qetp269WwWNtxidJ%2F%2FIKnS2LF8r8xm%2BEwIGS%2BP2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77ad2a42df19b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/js/code.js
95.163.52.67200 OK 0 B URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP 95.163.52.67:0
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 17 Dec 2022 05:12:42 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 16:42:10 GMT
set-cookie: FTID=1RMYgQ0tkIIE:1671253962:0:::; path=/; expires=Mon, 18-Dec-23 05:12:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"637e4d62-85c6"
expires: Sat, 17 Dec 2022 06:12:42 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif
185.178.208.130200 OK 0 B URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif
IP 185.178.208.130:0
GET /wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=dpP811KSj5J0jfqJbBH3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 14 Dec 2022 01:22:25 GMT
content-type: image/gif
content-length: 5922
last-modified: Sat, 22 Oct 2022 16:25:45 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "63541989-1722"
expires: Wed, 14 Dec 2022 19:44:41 GMT
age: 273014
X-Firefox-Spdy: h2