| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe | 51.75.52.14 | 301 Moved Permanently | 185 B |
URL HTTP/1.1s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe IP51.75.52.14:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4c555068310076e85908835c721911f5 9ec990aabb4391e139034f68e5e657e0f1d0b74d 568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Wed, 16 Nov 2022 12:16:17 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7786cd9bd97e024b3a1d16215defaad2 786ddbb74b0b6bd9270622dbe0258d6caee407c1 9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2682
Expires: Wed, 16 Nov 2022 13:00:59 GMT
Date: Wed, 16 Nov 2022 12:16:17 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash4fe5a11c3ca8a150aad830b739f24b58 898b730b1a66dd49c6f018333ba828410f63f347 2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5742
Cache-Control: max-age=85831
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:18 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 12:06:49 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc88bc06741ab9fb81c2544acfcc34aa2 362cab19cff5aba27f472cc00071d5dfa38192e4 314ba27975f458e13917b2be91c9d5989a3e57c9e94b5a84dd52d0e21d27ae7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6939
Expires: Wed, 16 Nov 2022 14:11:57 GMT
Date: Wed, 16 Nov 2022 12:16:18 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashd130218d0e2841f39c99610fe1a2ab90 29fbe1e177ee55c7a61ae0a206afff271cf5f945 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 11:44:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1906
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KAHc67sviQaqr0AA0Z7TgIhvPdIvvt3KLInFv42pvY7jRhqrIVrcZdoiAzzJqxD7VD5SEZzP8eQ=
x-amz-request-id: R7RBS351SDRX3S9S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 11:52:01 GMT
age: 1457
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 12:16:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash904ee288e5daa8241de3f7c7ec26573f a249ab51c614662abbb44d83d9c05e2c7f2ad3c6 884289b57e83a6b9835295b44c38d0cccb7efe67e0da44d7afaacb8191fabefd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "884289B57E83A6B9835295B44C38D0CCCB7EFE67E0DA44D7AFAACB8191FABEFD"
Last-Modified: Wed, 16 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15859
Expires: Wed, 16 Nov 2022 16:40:37 GMT
Date: Wed, 16 Nov 2022 12:16:18 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 11:25:01 GMT
cache-control: public,max-age=3600
age: 3077
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash8345d8a2ca46c3b181a81d8626d0425f 5d9d088c5dca072bbc9ad23a15450e7af7829400 663b0e6c239177f35b5b48d4203ce95aabc0e5bab7911f5b1d9fb7624cac2e25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4871
Cache-Control: max-age=166320
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:18 GMT
Etag: "6374a83b-1d7"
Expires: Fri, 18 Nov 2022 10:28:18 GMT
Last-Modified: Wed, 16 Nov 2022 09:07:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.89.136.7 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.89.136.7:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VxTFsqYoEQSicCD57riSFg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8FrTy8LBRVVSglEzK2PrRJjXk/4=
|
|
| s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe | 51.75.52.14 | 302 Found | 17 kB |
URL HTTP/2s04.mydiv-downloads.net/download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe IP51.75.52.14:0
File typegzip compressed data, from Unix\012- data Hashf7bd30a0ffcb07fa8395e8c1d3e405df f5cd65aa345fc3685d68cc924de60cde251f0ffc beb0080ab65093dd470bce59a55f740d08ca944bd11dad81d1fc61f15a6f1dbe
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /download/ahr0chm6ly9zb2z0lm15zgl2lm5ldc93aw4vzg93bmxvywqtsg9yb3njb3bllmh0bww=/97466/6215b2c2d1205/soft/dfiles/ru/win/horoscope/235380/horoscopev4.1setup.exe HTTP/1.1
Host: s04.mydiv-downloads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx/1.14.2
date: Wed, 16 Nov 2022 12:16:18 GMT
content-type: text/html; charset=UTF-8
location: https://mydiv.net/
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/uTorrent.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/uTorrent.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashd8b3a7cb134c0c01d8b730eb52efa445 e5f8e04f40a7149aa1be7256634f86cf370ab7af 8fc5ba6a1a76621176948efd20d396430b35edcbf317d3810750959978d56133
GET /images/ru/win/icons/uTorrent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1477
last-modified: Sun, 23 Oct 2022 04:20:19 GMT
etag: "6354c103-5c5"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Discord.gif | 54.36.106.111 | 200 OK | 946 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Discord.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash863bd8be9dbe3fc6ea1c2ebe5e17b0f2 0b8090fa9037490c85fa5bc389e9f89a83540862 0d329bc9801611acea8cda68e2f16de4b07635bf6de752188106e32cc09cb1b1
GET /images/ru/win/icons/Discord.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 946
last-modified: Thu, 03 Nov 2022 13:58:26 GMT
etag: "6363c902-3b2"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/BlueStacks.gif | 54.36.106.111 | 200 OK | 1.4 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/BlueStacks.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashde4422d577c482189dfe5966c7362737 473e997d0ded39d3ccb1c54f874576c71cc1405f ad97d0191d465353cb1567a6bd615bc00b95057dfcca9d395feff0b223aba739
GET /images/ru/win/icons/BlueStacks.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1438
last-modified: Wed, 16 Nov 2022 06:54:05 GMT
etag: "6374890d-59e"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zoom.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zoom.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf016ef461c4b5d433f2b75874a3fa9f0 84ca32cbbbdc8e3a4ad052bd9e4ed243ec0f0ceb ada6433e29568a6e2f031cfda2ff1ecac2a620bdfd9bba799fe463790cc1f83c
GET /images/ru/win/icons/Zoom.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1713
last-modified: Sat, 12 Nov 2022 23:47:48 GMT
etag: "637030a4-6b1"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/MediaGet.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/MediaGet.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashb69d7ccb1c036103aaf41086187b37fa 3cec81950db96a58ac7da7a216777c18f960ce0a 2c6ad5f94a93e5a49e305505f95e65e356d1f5e669a101e5a34d31715369ac2d
GET /images/ru/win/icons/MediaGet.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1589
last-modified: Mon, 13 Jun 2022 09:32:04 GMT
etag: "62a70414-635"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Zona.gif | 54.36.106.111 | 200 OK | 485 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Zona.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashaf31d9cab2614849c9f71f67744d5fe3 51ce21cafb25e407da959bfee9c4a1fbdc1fc0ec 885f59f4d86f36d1387042f418bc9dab60afa57f30c91b62b1492f96bc0dea72
GET /images/ru/win/icons/Zona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 485
last-modified: Wed, 17 Feb 2021 17:54:03 GMT
etag: "602d583b-1e5"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/WinRAR.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/WinRAR.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hashde072b93dbf65068ccfc9a91e722ae90 51e63f9279c737c782e9fce4d1991a2286eb1b65 5c45b14e029d2c8e7aff98121b8a5866706cda5dc40336b6b20654d177db8060
GET /images/ru/win/icons/WinRAR.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1484
last-modified: Sat, 14 May 2022 06:43:23 GMT
etag: "627f4f8b-5cc"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/CCleaner.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/CCleaner.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash28ecdadc6ce55c1c52937fe69634148f 53a1e07d37c4f4e940dcf928f071e1e9698cef5c 56d76d2683ce1d3285094a26ba0150346ff128fb922e3d3a7ec74c22017f563b
GET /images/ru/win/icons/CCleaner.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1626
last-modified: Mon, 24 Oct 2022 18:41:16 GMT
etag: "6356dc4c-65a"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Steam.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Steam.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash86c651e4629614e6c3d484025d31ec96 83f4de4ac00b8ef3d089d7c62eb7ef477bb1a033 e5fea4599e64d0132ca47ae960c3d792c3a1ab958544e69e8a36db71dc4b13f0
GET /images/ru/win/icons/Steam.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1464
last-modified: Wed, 19 Oct 2022 10:46:56 GMT
etag: "634fd5a0-5b8"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Rufus.gif | 54.36.106.111 | 200 OK | 860 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Rufus.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash8c927578b093422fe11e609f10c18aca 1a31f0fa6b91abbf0c7e64aa6e492992dec8fd8a 13c092b93de3bea603c7c63360af929d4f4afd3440c0a96fe24bce927e0dc62b
GET /images/ru/win/icons/Rufus.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 860
last-modified: Fri, 07 Oct 2022 11:23:24 GMT
etag: "63400c2c-35c"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/UltraISO-PE.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashf31881c998b0af01243f70cb5a1aedfc 56fdc0caa5991515922c15e3dcc4ac00cb8ca6b7 ff4e38c415472a6ecfae02ae03de9e293afe24fc84569298ffb0565fa773ea65
GET /images/ru/win/icons/UltraISO-PE.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1689
last-modified: Thu, 14 Jul 2022 18:06:37 GMT
etag: "62d05b2d-699"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/7-Zip.gif | 54.36.106.111 | 200 OK | 401 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/7-Zip.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash769824aa176b2636b1640c3d60afb524 655c4f97e6b7fa6fe12a8ed27da7e4bcdb0a6de9 f191b1e3ef1e66445d0dc5e296ef0009d67a49f4a13cc146a692bd8d48c43721
GET /images/ru/win/icons/7-Zip.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 401
last-modified: Sat, 16 Jul 2022 17:26:25 GMT
etag: "62d2f4c1-191"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif | 54.36.106.111 | 200 OK | 929 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Yandex-Browser.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 31\012- data Hash9833effb5dd42a027e756f796ddf4cfe 9e99332744c5484e396a029a9d34bf957dff3f73 2ebe442f30652b6c67329d1db561f07da3f941f78e687ecedd11c12c6accd16a
GET /images/ru/win/icons/Yandex-Browser.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 929
last-modified: Thu, 10 Nov 2022 02:27:03 GMT
etag: "636c6177-3a1"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/OBS-Studio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash475687f8d9f500bd84aff0051af75dc0 747eb724c7cd54c9cc583ec2eb034a04accb7cef 4a3f1eb3b4744aff569d957dc76c416a56e1c0ee1529ee487b5af81bf5e60570
GET /images/ru/win/icons/OBS-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1023
last-modified: Tue, 08 Nov 2022 05:09:15 GMT
etag: "6369e47b-3ff"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif | 54.36.106.111 | 200 OK | 964 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Animate.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash11c35a7e206514cf071c7ad75efee9a6 946062bc95112ae2b7e73a5e33d0a2884d983e34 bc9b9bd0ac35ac4b52ffa722f3d649901b7ce7aa6b08b58e6c1eb5c8865fd075
GET /images/ru/win/icons/Adobe-Animate.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 964
last-modified: Tue, 18 Oct 2022 23:38:14 GMT
etag: "634f38e6-3c4"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif | 54.36.106.111 | 200 OK | 1.0 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Adobe-Audition.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash84cfb69793f19552fdda4e7ff93ff571 b74176c770ae2a5e7591cf0c220c2031394e343a c24f8c26889b7da66bd9992ca444eff598d2480c066559b6a9883a285f095b8b
GET /images/ru/win/icons/Adobe-Audition.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1014
last-modified: Tue, 18 Oct 2022 23:25:09 GMT
etag: "634f35d5-3f6"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Cisco-Webex-Meetings.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Cisco-Webex-Meetings.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash15d2f324d448cc4f35be328a51333e86 a062d7cce366b2fc052776435267f09d87134fbb fa5665bf8439e3016c9842d2e8464452d6762d1d67e9856378386498c1770539
GET /images/ru/win/icons/Cisco-Webex-Meetings.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1656
last-modified: Wed, 16 Nov 2022 07:41:13 GMT
etag: "63749419-678"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Visual-Studio.gif | 54.36.106.111 | 200 OK | 491 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Visual-Studio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashaeef0f9308ec9985eb948e7e7b6727c0 6dca78e79efc8ccc903e5ac92a57b5d5d7b04ea8 e4c4df9fe86e16f51ffaf854c593a5bccb2b52e558a300239c66448f427e5297
GET /images/ru/win/icons/Visual-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 491
last-modified: Wed, 16 Nov 2022 07:38:19 GMT
etag: "6374936b-1eb"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Camtasia-Studio.gif | 54.36.106.111 | 200 OK | 664 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Camtasia-Studio.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash97d77b933e931f8e79537c0865796733 5593634fcb7ec945dbc56b38c3a2f52149b62f65 70306aef146c1705974f66557668a6b8df753333818ac7e92d383387592d54aa
GET /images/ru/win/icons/Camtasia-Studio.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 664
last-modified: Wed, 16 Nov 2022 07:35:38 GMT
etag: "637492ca-298"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/ICQ.gif | 54.36.106.111 | 200 OK | 1.5 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/ICQ.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 31 x 32\012- data Hashc1bedb51d245463f327702243e121632 c36c76518bb7c586603702c3ef02e09b58dce7cd c1c7b9b00af82e17dc2d7cdeeacea0b5e0e5b72d28db755bb8c2c2f5ab723fca
GET /images/ru/win/icons/ICQ.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1488
last-modified: Wed, 16 Nov 2022 07:33:36 GMT
etag: "63749250-5d0"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Driver-Talent.gif | 54.36.106.111 | 200 OK | 1.7 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Driver-Talent.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashee76bc31cb0f1700220e5099d7926f02 4429cdde7f2ba30371818c70add956e46fbc787b 31af9cb1b0bded09aa29fbb4a0bff92acef88e6a0b3ff8d7710f8ea6645994f1
GET /images/ru/win/icons/Driver-Talent.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1690
last-modified: Wed, 16 Nov 2022 07:31:12 GMT
etag: "637491c0-69a"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Opera-Portable.gif | 54.36.106.111 | 200 OK | 1.4 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Opera-Portable.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash67f2436af4e4ab8ad0bdd237744657bb 791933c76368f0ac17172209188d7548a42b1f6a 51fce3ffa4bcdd5da2f07d602d71e01789d82f5feeb86ccad6cab64aff54be5a
GET /images/ru/win/icons/Opera-Portable.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1427
last-modified: Wed, 16 Nov 2022 07:28:23 GMT
etag: "63749117-593"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Mailbird.gif | 54.36.106.111 | 200 OK | 487 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Mailbird.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash10a6e013a414cf18f06e9622ee3a85d1 0044a905cff9d6d5fdb7e4906105205445213f44 d57b5faf02ff131b20e5eddf3b39e28617cc5551385528f8d86acdcf4020e5ab
GET /images/ru/win/icons/Mailbird.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 487
last-modified: Wed, 16 Nov 2022 07:29:47 GMT
etag: "6374916b-1e7"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/WordPress.gif | 54.36.106.111 | 200 OK | 882 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/WordPress.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash7242c00dbb08c70971b4ef0c76fb31b4 301f17f1ce2431259cc5062cb9b36af8a6a8184e fee34d8c1d6bc63e9b3cd233797b754eced39a988e73793e3140e5dbc7e2018e
GET /images/ru/win/icons/WordPress.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 882
last-modified: Wed, 16 Nov 2022 07:27:33 GMT
etag: "637490e5-372"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/REAPER.gif | 54.36.106.111 | 200 OK | 1.4 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/REAPER.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash4c795aedfb5a6b15d5f895b6b6bbd029 761bcfa040645b9861968b7054554f8046dfd76a c1ebffc7d0de368860396a1a3ec2aab3bb03d707d9c92999158eed52912733cb
GET /images/ru/win/icons/REAPER.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1383
last-modified: Wed, 16 Nov 2022 07:25:01 GMT
etag: "6374904d-567"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/KiTTY.gif | 54.36.106.111 | 200 OK | 1.1 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/KiTTY.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash6a680c5d2538381208ac2b4949ba2b63 b0fade97006ccfff036ee0b1a3a1178fc8004820 d5dd31c8e891a2e5774a91c2f900a36580598eb0d6b31e5407b8f6c81fb04e33
GET /images/ru/win/icons/KiTTY.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1099
last-modified: Wed, 16 Nov 2022 07:23:44 GMT
etag: "63749000-44b"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Remote-Desktop-Manager.gif | 54.36.106.111 | 200 OK | 117 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Remote-Desktop-Manager.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashce8f7820761a302334786ca987e56ba5 ed4fcc8c0e3be618d5138f501e30919aaf766051 6d9f49dbeb4bf1990d32251e01237e1ae87de3060addf60ff1ef97bbe6e3efd4
GET /images/ru/win/icons/Remote-Desktop-Manager.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 117
last-modified: Wed, 16 Nov 2022 07:20:03 GMT
etag: "63748f23-75"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Rocket-Chat.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Rocket-Chat.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash857dbd8e89b9a6d471597aa3630229de 5fb9895421e2f5430f7b5b349bc7aa8d55dad2a6 c6da85619214dbe0b6e25f0a1fb2ff912c6e39e245e445ea7f0c6eb1be2e5db1
GET /images/ru/win/icons/Rocket-Chat.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1631
last-modified: Wed, 16 Nov 2022 07:18:24 GMT
etag: "63748ec0-65f"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash6814e115c43ff8e0d0fed7323db825dc 8c6602c57c16628d552fac610a272ae4dbe3d7fe 438d595f2e53574d716cc6c23b75c4491b67a29c9f8be91ae2337552e3bf096b
GET /images/ru/win/icons/AutoDWG-PDF-to-DWG-Converter.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1604
last-modified: Sat, 12 Nov 2022 03:30:05 GMT
etag: "636f133d-644"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif | 54.36.106.111 | 200 OK | 299 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash7e65ae03815fdcf6c4fb1403822e1216 d0c2650e067fcb4c593449db2714761ff98644e7 7366791c50bf813c932b7e949d2b9155473ecce97868adf47e108294e1e5ad8e
GET /images/ru/win/icons/Uchet-roznichnoy-torgovli-v-Excel.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 299
last-modified: Sat, 12 Nov 2022 02:40:00 GMT
etag: "636f0780-12b"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/LetitBit-Downloader.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/LetitBit-Downloader.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash07e921ec34a97b7a6384adfe5894861c 8ca0196f444a3fc620b3eaa07bddc65ae6508090 280350172e7018f99480f11d41060e2d2521d5e113d06c22649d9e4898f37668
GET /images/ru/win/icons/LetitBit-Downloader.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1648
last-modified: Sat, 12 Nov 2022 02:08:52 GMT
etag: "636f0034-670"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Nokia-Theme-Maker.gif | 54.36.106.111 | 200 OK | 318 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Nokia-Theme-Maker.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash0a0953cfad7549e32af2ca1d05cb9198 2d59bc5b5c891fc893c2ce9ffa78b5d6871c2743 b92db4bac654f1f7ca9adadefa07591ff049a503559a6582f22c4b13a140818c
GET /images/ru/win/icons/Nokia-Theme-Maker.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 318
last-modified: Sat, 12 Nov 2022 01:55:38 GMT
etag: "636efd1a-13e"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Acapela-Alyona.gif | 54.36.106.111 | 200 OK | 479 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Acapela-Alyona.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash00855c5c92b4d8643cb7928bdbe582b0 9c152a2d9bdaf587cadb2236315979f184e2c922 704e8d122ce241cfcea44c7627c5d0cbee532a618593d3908f22fbcef99eefcf
GET /images/ru/win/icons/Acapela-Alyona.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 479
last-modified: Sat, 12 Nov 2022 01:52:50 GMT
etag: "636efc72-1df"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Woody.gif | 54.36.106.111 | 200 OK | 1.3 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Woody.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash97deda741ece37e5372a986e9a9cfc0e 8e68b7284d287f5d659b5554c266be043b558af9 8ff4c6a89d7acabb9c7bdb912230095b87e68c3ca0ce2cd369ce290dec729115
GET /images/ru/win/icons/Woody.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1302
last-modified: Sat, 12 Nov 2022 01:29:23 GMT
etag: "636ef6f3-516"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/ChemDraw-Ultra.gif | 54.36.106.111 | 200 OK | 1.1 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/ChemDraw-Ultra.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash271be404e7989669e675bd4f2b372c13 42d8343a2619ccfd90805463fe6727446200223e e59a510d9e7a65596c52a2cbfdbdc59054ae3b55eee6dbe2b111c3041a365c14
GET /images/ru/win/icons/ChemDraw-Ultra.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1131
last-modified: Sat, 12 Nov 2022 01:20:13 GMT
etag: "636ef4cd-46b"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/VisSim.gif | 54.36.106.111 | 200 OK | 251 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/VisSim.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashba3ee2917e745a6ffbef2523af02bbd7 a0c9aa5ad549c6cb5e1ee5949e419351cff195e7 c507bc2879f26c3da53bbbda4c544ec48be9296058e0ec7ff140f15afda8a390
GET /images/ru/win/icons/VisSim.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 251
last-modified: Sat, 12 Nov 2022 00:57:15 GMT
etag: "636eef6b-fb"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Runpad-Shell.gif | 54.36.106.111 | 200 OK | 714 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Runpad-Shell.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hash73f8e846c18b808c0d6cf008b5467732 09f75d7fd8e6e1c53cbb012a18b162c71d0cee2c 45f869132c9769e19755967e35774717328b495ffd7753acc183a48bcc585426
GET /images/ru/win/icons/Runpad-Shell.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 714
last-modified: Fri, 11 Nov 2022 23:47:46 GMT
etag: "636edf22-2ca"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Kazahsko--russkiy-perevodchik.gif | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Kazahsko--russkiy-perevodchik.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hashaf87a2f765d667076f915b58b440488b 870676beaa49ab2a24728cde4af3a7b100bb0d5d 3d36a475d3d4f09ed65146c70b634125f5a1560a37d704d046822ed237ef3963
GET /images/ru/win/icons/Kazahsko--russkiy-perevodchik.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1776
last-modified: Fri, 11 Nov 2022 23:42:15 GMT
etag: "636eddd7-6f0"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/Norton-Commander.gif | 54.36.106.111 | 200 OK | 273 B |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/Norton-Commander.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 32 x 32\012- data Hasha766e243d83366c9e217f706dd816e49 cb5eebba8b186bea81dec336d7599d74fb501638 5953ad4aa6178456824a764523c2b0d1db508e911f2f28adfb49893f02eb24b9
GET /images/ru/win/icons/Norton-Commander.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 273
last-modified: Fri, 11 Nov 2022 23:33:53 GMT
etag: "636edbe1-111"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| soft.mydiv.net/images/ru/win/icons/DBFNavigator.gif | 54.36.106.111 | 200 OK | 1.6 kB |
URL HTTP/2soft.mydiv.net/images/ru/win/icons/DBFNavigator.gif IP54.36.106.111:0
File typeGIF image data, version 87a, 26 x 32\012- data Hash15930b65c5d262eadc5e04bf52ff97a2 d715eebaaafaef987c586b5ae7cbf789d80b602f f091c29a3ca90c75dbd9bfb5e32ff574a1b8929d5ff1c18f6edc7b81f79a2898
GET /images/ru/win/icons/DBFNavigator.gif HTTP/1.1
Host: soft.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/gif
content-length: 1598
last-modified: Fri, 11 Nov 2022 23:24:06 GMT
etag: "636ed996-63e"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72552_small.jpg | 54.36.106.111 | 200 OK | 9.6 kB |
URL HTTP/2games.mydiv.net/images/screens/72552_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashe7ec3fbcd0bb8c0f320a22e4ce7bc13d 1b66be0bd72f822bd20a9dc1f581ff461effaedc afd528fd200632332754b169a6b8eedd1bf8cc7ff9f7121ec7b5904c024394ed
GET /images/screens/72552_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 9586
last-modified: Wed, 16 Nov 2022 00:18:23 GMT
etag: "63742c4f-2572"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72544_small.jpg | 54.36.106.111 | 200 OK | 9.1 kB |
URL HTTP/2games.mydiv.net/images/screens/72544_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash645bdbcd89f201bd9a1dc0ef19641c77 734643c783c86f39e41d7dcc529e70f6f95ba508 2ec5e2ae5a8a265da24cc6f7d97c8ba129d4f291cdbc79acc38fb232b5fd133e
GET /images/screens/72544_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 9090
last-modified: Sat, 12 Nov 2022 04:53:23 GMT
etag: "636f26c3-2382"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72536_small.jpg | 54.36.106.111 | 200 OK | 64 kB |
URL HTTP/2games.mydiv.net/images/screens/72536_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=14, height=576, bps=182, compression=none, PhotometricIntepretation=RGB, orientation=upper-left, width=1024], baseline, precision 8, 190x190, components 3\012- data Hashf7f32784e207ffc2fb31dc5b740deee7 bad4937cc05612b1cf095dbbfb2aff22f789345c 701776ea932109b159c7e4fe796d890ffa3c57966e5e59a816000f2a34b3ded0
GET /images/screens/72536_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 63590
last-modified: Sat, 12 Nov 2022 04:45:08 GMT
etag: "636f24d4-f866"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72528_small.jpg | 54.36.106.111 | 200 OK | 17 kB |
URL HTTP/2games.mydiv.net/images/screens/72528_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hasheeca88dc690f787124c1172a40b955a1 81dc41ecb2080b91c31384ad88a6d8c5d5869da7 c777d4232c16dfe1737076d809b071037c8e30d566344572229d6ec98253efc5
GET /images/screens/72528_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 17235
last-modified: Sat, 12 Nov 2022 04:37:25 GMT
etag: "636f2305-4353"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72520_small.jpg | 54.36.106.111 | 200 OK | 72 kB |
URL HTTP/2games.mydiv.net/images/screens/72520_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2011:02:23 16:33:07], baseline, precision 8, 190x190, components 3\012- data Hash47bee9f588dea045f597541c021a87e7 239f0899f396ab28ccd81ee85fa5c4e95941c654 c06ecc4aac24952ffe0709d17f2b81ec0ee1c59e63b250fedad5134c45822d80
GET /images/screens/72520_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 72186
last-modified: Sat, 12 Nov 2022 04:28:10 GMT
etag: "636f20da-119fa"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72512_small.jpg | 54.36.106.111 | 200 OK | 60 kB |
URL HTTP/2games.mydiv.net/images/screens/72512_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2011:07:13 10:19:33], baseline, precision 8, 190x190, components 3\012- data Hashc67ce6593c249918904b4c570967bf5c ea01765bae2b4ecc03217fe0c054daa64340c7ec 896287620ff8ccd10d212ae1994c305d556615dea54a80e01a5603d4883a90cf
GET /images/screens/72512_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 60361
last-modified: Sat, 12 Nov 2022 04:17:57 GMT
etag: "636f1e75-ebc9"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72504_small.jpg | 54.36.106.111 | 200 OK | 23 kB |
URL HTTP/2games.mydiv.net/images/screens/72504_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash660ed7fb7807eaf4f506ff45a3feaa15 1ff701a9220e820a31d25d873f85e97fb9b7bc61 0d20d5043584fccf6594bb217d7d1316fdc7c7bb4d2ddfbdbbf358f702a51b85
GET /images/screens/72504_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 23429
last-modified: Sat, 12 Nov 2022 04:01:35 GMT
etag: "636f1a9f-5b85"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72496_small.jpg | 54.36.106.111 | 200 OK | 17 kB |
URL HTTP/2games.mydiv.net/images/screens/72496_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash3e17bbf0fa8a9eefe15db808cbc661c9 3dcfadd3cf0cf4d50973789acabc8538733fd3c4 284cfa6fc2409c3cd80f43fc0698728eb496e2f39641d8a14f697e8ad983f2b6
GET /images/screens/72496_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 16871
last-modified: Sat, 12 Nov 2022 03:50:30 GMT
etag: "636f1806-41e7"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| games.mydiv.net/images/screens/72491_small.jpg | 54.36.106.111 | 200 OK | 16 kB |
URL HTTP/2games.mydiv.net/images/screens/72491_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash2d6a8e08f91f8689a37890b55f55f7bb 589e381aa3360461cb952be4a89882a8257f9759 0f69ee0faff9e378e1fef9d751b034d5faf9c2cda608f3355e2f3fcff33b1283
GET /images/screens/72491_small.jpg HTTP/1.1
Host: games.mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 16489
last-modified: Sat, 12 Nov 2022 03:41:39 GMT
etag: "636f15f3-4069"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28450_small.jpg | 54.36.106.111 | 200 OK | 10 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28450_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash06aabfd91ce6e965c6361f5e990ccc17 7986b0f85682e2d01d5f2402b43fd65ba39064a1 cf8afa50a41cbcec19e772df1c4424a0b04bf072ec329fc51646528084a52c78
GET /images/arts/ru/screens/28450_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 10529
last-modified: Sat, 12 Nov 2022 16:06:14 GMT
etag: "636fc476-2921"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28448_small.jpg | 54.36.106.111 | 200 OK | 9.1 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28448_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash72284bdbc2a89713dffa1f967ba7fc9d fc6a8856e95a5909c487fc5a33435032ee1c02e0 12da1670064668353678a4748a3e5b52e77bf08e472346cf41c6648615b346ab
GET /images/arts/ru/screens/28448_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 9128
last-modified: Mon, 17 Oct 2022 21:59:05 GMT
etag: "634dd029-23a8"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28447_small.jpg | 54.36.106.111 | 200 OK | 3.4 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28447_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash21737a3b38213a1a3e2700685bebff1e c9dc19e89ba499070adba8c6f1a39a3332cbef68 9ed868f14161e89d7c1745bc69e6179dd23001723d739645afe84ec9c1d3195a
GET /images/arts/ru/screens/28447_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 3434
last-modified: Fri, 14 Oct 2022 10:44:36 GMT
etag: "63493d94-d6a"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28445_small.jpg | 54.36.106.111 | 200 OK | 9.1 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28445_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hashd21f28ce9ef212bb54e71ea9c6411380 0257911ac06d90b7097c84a001ca95f742578541 8f44934fd098b0cad038302d50d97ace212a7491eab25bb659ed50a421c099af
GET /images/arts/ru/screens/28445_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 9145
last-modified: Sun, 02 Oct 2022 19:49:12 GMT
etag: "6339eb38-23b9"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28443_small.jpg | 54.36.106.111 | 200 OK | 11 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28443_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hashf4ec2e491cb08ddfd682c6cd84016776 770bf22857645bdd9b2f2a1734918e61b631ca88 32e8fd76c4526bf9dd630f9583a639d5811fa58c766c04da2695a9094def1324
GET /images/arts/ru/screens/28443_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 11279
last-modified: Sun, 18 Sep 2022 15:01:21 GMT
etag: "632732c1-2c0f"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28442_small.jpg | 54.36.106.111 | 200 OK | 17 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28442_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 190x190, components 3\012- data Hash15828d360118366377b1419104814af3 8390a95680252e9d4672ec9bd26a9c7ca202d573 b7c45767f2d7c5c9af1b2b0704b7315c4e62dd0fcf6d22b7590730b084e0e03f
GET /images/arts/ru/screens/28442_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 17075
last-modified: Wed, 07 Sep 2022 00:36:28 GMT
etag: "6317e78c-42b3"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28440_small.jpg | 54.36.106.111 | 200 OK | 20 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28440_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash34e6b9f5686d42f769d65da3c703afb3 be3eb1eb6a659519f7d97ded63d51853519454cd 499a3a807b45a524e1d1d9ace22de433c7b91ce04db2d24a411b0e45fc034245
GET /images/arts/ru/screens/28440_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 20282
last-modified: Sun, 14 Aug 2022 14:14:16 GMT
etag: "62f90338-4f3a"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28439_small.jpg | 54.36.106.111 | 200 OK | 15 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28439_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 190x190, components 3\012- data Hash70a04d63129725567c2182f64f0d1af1 bd3ac462016f4eaa9d40a45842bca46b37bf1e9b f85c61c2615cfa6524e9956c840a2a424940fac22d252c711ee639b01c785535
GET /images/arts/ru/screens/28439_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 14905
last-modified: Sat, 30 Jul 2022 22:51:54 GMT
etag: "62e5b60a-3a39"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28438_small.jpg | 54.36.106.111 | 200 OK | 7.0 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28438_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 190x190, components 3\012- data Hash3009c49202998ab4cd1216520a8cc819 2fb13ed4c45430c3b4c9ccaeeb55da24c2caf748 5faeae1034449278fe2ef1e5965b3406d7225272a3d0b192ca04c47b0f0418d2
GET /images/arts/ru/screens/28438_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 6953
last-modified: Tue, 12 Jul 2022 21:13:06 GMT
etag: "62cde3e2-1b29"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png | 54.36.106.111 | 200 OK | 1.8 kB |
URL HTTP/2mydiv.net/build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png IP54.36.106.111:0
File typePNG image data, 117 x 27, 8-bit/color RGBA, non-interlaced\012- data Hashc539cc4109c4ed80ec05cb5812112d1c e54ad527d32113957d3c6fbc42f5dee7cf2a15f5 3abcf0a2a296461fb1cf4584d08a2a9afdbd0c0861a7211ab6f53fc64f8fe83a
GET /build/public/images/c539cc4109c4ed80ec05cb5812112d1c.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/png
content-length: 1770
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-6ea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/images/arts/ru/screens/28441_small.jpg | 54.36.106.111 | 200 OK | 158 kB |
URL HTTP/2mydiv.net/images/arts/ru/screens/28441_small.jpg IP54.36.106.111:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Macintosh), datetime=2022:07:28 14:01:21], baseline, precision 8, 190x190, components 3\012- data Size158 kB (158511 bytes) Hash5a4c909ce1a53b3780a8ae729ba2c585 326540caaedad3bd2c782e849b3db910af033783 2c8cfe2cb61febb869cdd0b2afbe6a2df57b3783629dbc18fc61e2de76de9e10
GET /images/arts/ru/screens/28441_small.jpg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/jpeg
content-length: 158511
last-modified: Wed, 31 Aug 2022 14:02:00 GMT
etag: "630f69d8-26b2f"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png | 54.36.106.111 | 200 OK | 4.9 kB |
URL HTTP/2mydiv.net/build/public/images/e7812d5843d1bdde5f676ec192619596.png IP54.36.106.111:0
File typePNG image data, 450 x 45, 8-bit colormap, non-interlaced\012- data Hashe7812d5843d1bdde5f676ec192619596 33f68a6af0085917a61ec1a04ab007dbc0036afe ddfe30fde5e1c5bb5b65fc54e21b59ed54c2df16c3a907909a0fba08c027acad
GET /build/public/images/e7812d5843d1bdde5f676ec192619596.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/png
content-length: 4885
last-modified: Mon, 18 Apr 2022 09:56:46 GMT
etag: "625d35de-1315"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js | 151.101.85.229 | 200 OK | 85 kB |
URL HTTP/2cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js IP151.101.85.229:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (587) Hashfbfd766ebfca8f75b9875252a78addce ca2110b00b852006b5737393b15a010d3293e764 d448f5b8fe10825d00cf6397079c3664cbfdf3c0830e6e79ce1836b9fc18ca3f
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.248.0
x-jsd-version-type: version
etag: W/"346fc-af2z7qF2rEuERVVyudEDx70SML4"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 16 Nov 2022 12:16:19 GMT
age: 21127
x-served-by: cache-fra19157-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 85147
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.21.226:0
Hash59f891eb2ae6cb82e9095191053e6969 0ff13c87a3a78fb21e90e70cd34bcea21210bddf 8fe4395386aa0c4cbd1ec08ddf33f5c0d6018331578c1d8db4089883296a7413
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "4B58DB7408EF79D5ECEE97A323A56BA6DBC1F9B9"
Expires: Wed, 16 Nov 2022 22:00:00 GMT
Last-Modified: Wed, 16 Nov 2022 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2871
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b02839def80afa-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf65bbeba59ba5e31638a17325798582f 4e544597bb0593697cec412fb97217899add2d96 adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf65bbeba59ba5e31638a17325798582f 4e544597bb0593697cec412fb97217899add2d96 adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 | 216.58.207.195 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 10412, version 1.0\012- data Hashf9f3b19c02acf071e57b965bed8f3b02 3dbfd06b63517d349a70537269e6d4dbe6fcaec5 56e65b34594acd80db8f7c4eed23b846cc39e2207d2a8166208bd81c020b9fdd
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveQhf6TF0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 22:51:02 GMT
expires: Sat, 11 Nov 2023 22:51:02 GMT
cache-control: public, max-age=31536000
age: 393917
last-modified: Thu, 01 Apr 2021 22:06:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 | 216.58.207.195 | 200 OK | 23 kB |
URL HTTP/2fonts.gstatic.com/s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 22920, version 1.0\012- data Hash70487f355d22aef7eee8f36bca4d03b8 9ffd6785eeaad33637a9c1be6a0c208f346e134e d28cae33a9cff1cd54246e2bca04018f101451707a5b5f426d32ea768e911186
GET /s/firasans/v11/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 05:40:09 GMT
expires: Wed, 15 Nov 2023 05:40:09 GMT
cache-control: public, max-age=31536000
age: 110170
last-modified: Thu, 01 Apr 2021 22:06:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon-192x192.png | 54.36.106.111 | 200 OK | 19 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon-192x192.png IP54.36.106.111:0
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash70289d57de1e3d2dffeb3c3a85418a9c 673136d7d97ebfea4e16a65b2c356b2f4e4f6067 b4c347b138911ec83090f2af209ae4173a7fce7a5d9b301cf6a90166d5a97f96
GET /tim/design/favicon/favicon-192x192.png HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/png
content-length: 18575
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-488f"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mydiv.net/tim/design/favicon/favicon.min.svg | 54.36.106.111 | 200 OK | 4.5 kB |
URL HTTP/2mydiv.net/tim/design/favicon/favicon.min.svg IP54.36.106.111:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4463), with no line terminators Hashde51b957170a46e23a1a3eaf49df0554 e53b7df07f1b62f7d5b76e8053cd8708ba2d71c2 ca1f1d02dbbb12b24625d69a3a1ee4d61e600fbbde602877b48102b819647220
GET /tim/design/favicon/favicon.min.svg HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: image/svg+xml
content-length: 4463
last-modified: Tue, 03 May 2022 14:16:08 GMT
etag: "62713928-116f"
expires: Fri, 16 Dec 2022 12:16:19 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf65bbeba59ba5e31638a17325798582f 4e544597bb0593697cec412fb97217899add2d96 adc5670dce70829fcd1edfa5c47f3bf14ee0ee7eb1e090a62818e679b91585d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash68a04663a52ab4272c25f5afcc09a92d 48b0722227353d06cb1dfd4480b644be6e6fc030 892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3dc58f0dcba4ac9021f62c5c1c862e91 d67cf5a8968b75d0d6893054f5201e015be19ecc 75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash74c07a15d0960c36c1d1160344b946da 9b0d25cc445c83d1eae53deb84a2a74b152af6d4 ba99f5ae2d779e578700195798bb71dd43f11195ef6a982e0eaac735e26b5a85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| google-analytics.com/analytics.js | 216.58.211.4 | 200 OK | 20 kB |
URL HTTP/2google-analytics.com/analytics.js IP216.58.211.4:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 16 Nov 2022 10:19:09 GMT
expires: Wed, 16 Nov 2022 12:19:09 GMT
cache-control: public, max-age=7200
age: 7030
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.66 | 200 OK | 49 kB |
URL HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.66:0
File typeASCII text, with very long lines (4885) Hash174f19d82947b4c49372c9f2a01e7d27 16fcdc5c130aa208a984315925e1485c625ccb9f e48b6c9a8d7fb02876ceddf57da5d876740f6faec7b404e0b15891220e3108a5
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 16 Nov 2022 12:16:19 GMT
expires: Wed, 16 Nov 2022 12:16:19 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17827321534024375539
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49163
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 937 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hashae6072f46d1815227bb6bc9b5bacf6e1 ba265e99a1c2303a91354fb17500b7f6f7abffca 87e1964dd4a173f921f9b461d42abe6074309d69424016af51d67dfe5d375401
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:19 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Sun, 20 Nov 2022 11:04:47 GMT
ETag: "ba265e99a1c2303a91354fb17500b7f6f7abffca"
Last-Modified: Wed, 16 Nov 2022 11:04:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2355
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283adfe80afa-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashabdbaa56ac358c53c5dc3723c7671381 48c0e50792e786d83b35f0a36efb55f4c94c694d 6e9cb55f14b8219b7495ed4cd17bae3f0ca6127735ed01d3c1979601ffeb7b1c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash74c07a15d0960c36c1d1160344b946da 9b0d25cc445c83d1eae53deb84a2a74b152af6d4 ba99f5ae2d779e578700195798bb71dd43f11195ef6a982e0eaac735e26b5a85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hashbf4c5955afd3a97a8c8b9fc45b3e6970 e1489f12b156089f1e91c52bf2e21bfd6f84262e 6a5cbda8bd56c87eab9b550dbbe6213959025c5eb27b7c8524b3f8b6213c5394
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:19 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 20 Nov 2022 11:11:23 GMT
ETag: "e1489f12b156089f1e91c52bf2e21bfd6f84262e"
Last-Modified: Wed, 16 Nov 2022 11:11:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1971
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283be93c0afa-OSL
|
|
| mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 | 87.250.251.119 | 200 OK | 400 B |
URL HTTP/2mc.yandex.ru/watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 IP87.250.251.119:0
File typeJSON data\012- , ASCII text, with very long lines (400), with no line terminators Hash4af2f8a619215f39a40a300b40923ccf acc3aabdaa059125ea9446718f7fdfd31dd0f6de ef86b18d7693214294a5127f679736a0ac73b6b1ddd3045d34d3023c5f81c114
GET /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Referer: https://mydiv.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Wed, 16 Nov 2022 12:16:19 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:19 GMT
last-modified: Wed, 16-Nov-2022 12:16:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:19 GMT
access-control-allow-origin: *
etag: "63575841-2b"
expires: Wed, 16 Nov 2022 13:16:19 GMT
accept-ranges: bytes
last-modified: Tue, 25 Oct 2022 06:30:09 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) | 87.250.251.119 | 302 Found | 2 B |
URL HTTP/2mc.yandex.ru/watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) IP87.250.251.119:0
File typeASCII text, with no line terminators Hash38684612f0c6bb6dfa16da92f4a6878f 6fe62d0dd7db314b7f9bb945672f078e01d27f0f a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
GET /watch/52589233?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/52589233/1?wmode=7&page-url=https%3A%2F%2Fmydiv.net%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A15m5t3makqb6yg1f8bcanw%3Afp%3A1749%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A921%3Acn%3A1%3Adp%3A0%3Als%3A640379096119%3Ahid%3A355772051%3Az%3A0%3Ai%3A20221116121618%3Aet%3A1668600979%3Ac%3A1%3Arn%3A614684819%3Arqn%3A1%3Au%3A1668600979404759079%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C92%2C689%2C0%2C588%2C0%2C%2C316%2C2%2C%2C%2C%2C1810%3Ans%3A1668600976965%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1668600979%3At%3A%D0%A1%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%B3%D1%80%D0%B0%D0%BC%D0%BC%D1%8B%20%D0%B4%D0%BB%D1%8F%20Windows%2C%20Android%20%D0%B8%20iOS.%20%D0%94%D0%BB%D1%8F%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%BE%D0%B2%20%D0%B8%20%D0%B3%D0%B0%D0%B4%D0%B6%D0%B5%D1%82%D0%BE%D0%B2.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 16 Nov 2022 12:16:19 GMT
access-control-allow-origin: https://mydiv.net
set-cookie: yandexuid=320170331668600979; Expires=Thu, 16-Nov-2023 12:16:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=320170331668600979; Expires=Thu, 16-Nov-2023 12:16:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=5724081668600979; Path=/; SameSite=None; Secure
i=g6vE1LO3EelcwnTeVAY4y/+I0CIymNlLuTWVvVxmrcgSe0RGLpFAa+iNArztQrGkomtX3ncVkfHZ7maiaIvdyE9zYV4=; Expires=Sat, 13-Nov-2032 12:16:11 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1700136979.yrts.1668600979#1700136979.yrtsi.1668600979; Expires=Thu, 16-Nov-2023 12:16:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:19 GMT
last-modified: Wed, 16-Nov-2022 12:16:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash129025d9b876498c0df8ec65e05cd1c8 6a1846d42e58d923266f250cd632a6abce647239 51dd73a93821c741ac8c3ccca91da902fe3e93c5d86fa7a4298edacf6239a646
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 20 Nov 2022 08:01:15 GMT
ETag: "6a1846d42e58d923266f250cd632a6abce647239"
Last-Modified: Wed, 16 Nov 2022 08:01:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3466
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283d1a8a0afa-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash129025d9b876498c0df8ec65e05cd1c8 6a1846d42e58d923266f250cd632a6abce647239 51dd73a93821c741ac8c3ccca91da902fe3e93c5d86fa7a4298edacf6239a646
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 20 Nov 2022 08:01:15 GMT
ETag: "6a1846d42e58d923266f250cd632a6abce647239"
Last-Modified: Wed, 16 Nov 2022 08:01:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3466
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283d3aaa0afa-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash129025d9b876498c0df8ec65e05cd1c8 6a1846d42e58d923266f250cd632a6abce647239 51dd73a93821c741ac8c3ccca91da902fe3e93c5d86fa7a4298edacf6239a646
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 20 Nov 2022 08:01:15 GMT
ETag: "6a1846d42e58d923266f250cd632a6abce647239"
Last-Modified: Wed, 16 Nov 2022 08:01:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3466
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283d4a0f1bfe-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash129025d9b876498c0df8ec65e05cd1c8 6a1846d42e58d923266f250cd632a6abce647239 51dd73a93821c741ac8c3ccca91da902fe3e93c5d86fa7a4298edacf6239a646
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 16 Nov 2022 12:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 20 Nov 2022 08:01:15 GMT
ETag: "6a1846d42e58d923266f250cd632a6abce647239"
Last-Modified: Wed, 16 Nov 2022 08:01:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3466
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76b0283d4b270b59-OSL
|
|
| yastatic.net/partner-code-bundles/681462/70f3333fd38ac345d3a7.js | 178.154.131.215 | 200 OK | 23 kB |
URL HTTP/2yastatic.net/partner-code-bundles/681462/70f3333fd38ac345d3a7.js IP178.154.131.215:0
File typeASCII text, with very long lines (65494) Hash6b243fd61720bd65a19714b8cdcefdaa e0fc6cc8e5f4fa221019753ac326d87f629b5622 b70fcb4c923d62be084c64f584ed9da272f1a5b297ea252094912f73084a352e
GET /partner-code-bundles/681462/70f3333fd38ac345d3a7.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 16 Nov 2022 12:16:20 GMT
content-type: text/javascript; charset=utf-8
content-length: 23437
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "6b243fd61720bd65a19714b8cdcefdaa"
expires: Fri, 15 Nov 2052 18:51:51 GMT
last-modified: Tue, 15 Nov 2022 14:34:28 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/681462/c9bf687d7c0fa3ca3e6e.js | 178.154.131.215 | 200 OK | 99 kB |
URL HTTP/2yastatic.net/partner-code-bundles/681462/c9bf687d7c0fa3ca3e6e.js IP178.154.131.215:0
File typeASCII text, with very long lines (65497) Hash645b024ec59d26c6d743701156733e9d a543a00ce297894d8bd7c86f2f5137cc484d5212 f39991aba671aee77f9bcb72dac8d016ecf217530279251e5f98852f3f39c5d6
GET /partner-code-bundles/681462/c9bf687d7c0fa3ca3e6e.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 16 Nov 2022 12:16:20 GMT
content-type: text/javascript; charset=utf-8
content-length: 99017
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "645b024ec59d26c6d743701156733e9d"
expires: Fri, 15 Nov 2052 18:51:54 GMT
last-modified: Tue, 15 Nov 2022 14:34:29 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/safeframe-bundles/0.83/host.js | 178.154.131.215 | 200 OK | 8.9 kB |
URL HTTP/2yastatic.net/safeframe-bundles/0.83/host.js IP178.154.131.215:0
File typeASCII text, with very long lines (33703), with no line terminators Hashf80882bf67cf261aa08d636da095149a 3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd 4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 16 Nov 2022 12:16:20 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Fri, 15 Nov 2052 18:50:08 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/681462/3521127290410543dbe9.js | 178.154.131.215 | 200 OK | 4.8 kB |
URL HTTP/2yastatic.net/partner-code-bundles/681462/3521127290410543dbe9.js IP178.154.131.215:0
File typeASCII text, with very long lines (14337) Hash3498e29dc3d87fe07276e21d6e2877b1 29fce673733156bc37a294a79cb2840d48011eb8 889bacd446fafc2699941ef1ecf2f464dfb57f1f048789eef7e4eca91c258d18
GET /partner-code-bundles/681462/3521127290410543dbe9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Wed, 16 Nov 2022 12:16:20 GMT
content-type: text/javascript; charset=utf-8
content-length: 4799
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "3498e29dc3d87fe07276e21d6e2877b1"
expires: Fri, 15 Nov 2052 18:51:51 GMT
last-modified: Tue, 15 Nov 2022 14:34:28 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Wed, 16 Nov 2022 13:20:59 GMT
Date: Wed, 16 Nov 2022 12:16:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Wed, 16 Nov 2022 13:20:59 GMT
Date: Wed, 16 Nov 2022 12:16:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Wed, 16 Nov 2022 13:20:59 GMT
Date: Wed, 16 Nov 2022 12:16:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9426341bb128c1b6ba16e64df78152b4 08859a30ed6dee233cde4d77f2a04f058991502b 209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3879
Expires: Wed, 16 Nov 2022 13:20:59 GMT
Date: Wed, 16 Nov 2022 12:16:20 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash032386e5c9dffff1ba1ee5e8a322d438 dd4fd6c803a9b333bace9a541c6bd183d0c56bb9 0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: ae092a0a-1709-4497-9f07-0348a28d2491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZOIEN7oAMFlaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408c0-5ac595df302a8f1d3703ad8d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:46:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c_SJMaV3uYSUysTSOFV--jQqDUxw-fBp8cXWWUZw9vUjt0d6PsOpxA==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 02:02:52 GMT
age: 36808
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe20f8abbc01d56b01bce168c315d875d 3ffe3499c1588ff1893ae2f88a3e5c2eb27d0be8 33eb87e95dbceb5755aa9b17fd8fa02c25b357ea7dac05d2fe5a8c4bf39d19e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg | 34.120.237.76 | 200 OK | 9.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashae0ab55e0e77a4265808a6689f25cbc3 187e6b340b43eb1aa0c724b749db7c20a486706a 3881e5ad44b9b2fae82510794af43d14e304ce624f26f66523f85d58fea063dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e399ef-c649-4728-84e9-6fea03ea9b5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9625
x-amzn-requestid: 9bd72b4a-2ac0-423f-b0e2-73fd51e02e97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYEBHTjIAMFvOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406e6-57f5412d5eca6d640a0f590d;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qWuPuzaXg4Cfowj2mJuTEUIH3UVCely6rXVpbiNGxIDgBAt38UOBxw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:50 GMT
etag: "187e6b340b43eb1aa0c724b749db7c20a486706a"
content-type: image/jpeg
age: 51690
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb31091803f98744f4da3b311467300a7 d829c5d23a494bc901d925dd02b84c470a0de479 c1cb88b82d8b5a82019da970f812cd31e13086c2da8498a21a57e7238aa34fe8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30efee28-35ab-4b55-b685-02cbd4c5c8c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8971
x-amzn-requestid: b5dd68c5-7146-4d31-a7fd-4ac4c474119a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnb6bGeyoAMFV9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372d9dc-2ca4003e65d69039389bc676;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 00:14:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8TqIvhJUq_yG_iMFds_btqtYsrNzoaZeIQgOP0-Kc60yuQFOPYEXRA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 09:04:35 GMT
age: 11505
etag: "d829c5d23a494bc901d925dd02b84c470a0de479"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash98802857df59f8eacd9211811cc59ae6 87e277a627c1085cad5c6e38bdd5100aa0a9ecee 102e73f690a972da6d3ab609ffab5f29884185d85c4230a19ec74d74c7320cf1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8235
x-amzn-requestid: e8a91ec0-fa93-45b6-8dc8-a405c00242fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY4_HANoAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740839-3ebbd38b0e3e774923ad019e;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QoxGYkibw1jcAuQl98jD4TlKooUlL6ojdOVzQ7khiF0pMwY4_0IO9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 52063
etag: "87e277a627c1085cad5c6e38bdd5100aa0a9ecee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash96b4478c098865b0d19738098db61d64 0e18a8c51596c8a4d84a142a57ffe376294833cc 9c9e433cf8f2167e4cfc3cff247eee85ebb9977e338e6e144acaea830db17c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0be1985-4e6e-4cc3-9b6e-2fc0d94bc02b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5749
x-amzn-requestid: ee63924c-be5c-4f48-9fe0-cc2ba3f93ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bX5qxHgWoAMFiZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ca311-32c6916d41247a9b563c952f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 07:06:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5hBm4pVThVud5Nr3ReI8uRgqhR3MVsqS4qGEcE5Wrs3pqzyMgH2CRg==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 16 Nov 2022 05:57:01 GMT
age: 22759
etag: "0e18a8c51596c8a4d84a142a57ffe376294833cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash53d2d9380ba28ed0656b54c22bc56766 757f8e6306effbab70d99757c5672564cfc9f623 6d6c41527ae28cdce016470ec1eb87e0ed384f3ef721838724f29845f3bd8dac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b00960f-2d08-4518-83c0-1d7f0f3c973c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8990
x-amzn-requestid: cb142f4b-787e-4b3c-9d75-72579105db60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFOHi8IAMFpDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406ee-504a14105d2be58b1ce71c18;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:54 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: K-Js3sppuhzF03KF0M0wVw5GCSaq5VfHDbzU2DyEwjiARRDsccGYbQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:54 GMT
etag: "757f8e6306effbab70d99757c5672564cfc9f623"
content-type: image/jpeg
age: 51686
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3a8b96c62fae67d3ceb2c01bd8547672 7b0733eff3bb8b2cc82fb8aa9cf2564a8ae513a0 a2b00a73a28754bfd65937c1f414c1de4eee09735dc0958f919f41f73a4cbecc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481&gpid_exp=1 | 172.217.21.162 | 200 OK | 247 B |
URL HTTP/2partner.googleadservices.com/gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481&gpid_exp=1 IP172.217.21.162:0
File typeASCII text, with very long lines (385), with no line terminators Hash055b8079895eee556c32f1c7f6db1062 24ae782abf7aca560447c6a4e114e3a734496037 550e2a3b0a267df2186141c9856e683608a26363ab23aedc38696772cdf69f59
GET /gampad/cookie.js?domain=mydiv.net&callback=_gfp_s_&client=ca-pub-1842037506098481&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 16 Nov 2022 12:16:20 GMT
server: cafe
cache-control: private
content-length: 247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash1b43631817b375ad10d08b6fd9ff9249 ca2988f207b07f60e4204c701e127f84a69a5446 d61ac811e9c087f7fe5a9baeaf3065ac313c1e777f169cf91516ef4b83304f1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| adservice.google.no/adsid/integrator.js?domain=mydiv.net | 142.250.74.130 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=mydiv.net IP142.250.74.130:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 16 Nov 2022 12:16:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.com/adsid/integrator.js?domain=mydiv.net | 142.250.74.98 | 200 OK | 100 B |
URL HTTP/2adservice.google.com/adsid/integrator.js?domain=mydiv.net IP142.250.74.98:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 16 Nov 2022 12:16:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashe20f8abbc01d56b01bce168c315d875d 3ffe3499c1588ff1893ae2f88a3e5c2eb27d0be8 33eb87e95dbceb5755aa9b17fd8fa02c25b357ea7dac05d2fe5a8c4bf39d19e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash3a8b96c62fae67d3ceb2c01bd8547672 7b0733eff3bb8b2cc82fb8aa9cf2564a8ae513a0 a2b00a73a28754bfd65937c1f414c1de4eee09735dc0958f919f41f73a4cbecc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9d9493125a22b98bd2ac3a1b11cc0a12 8334175b79551b1e0592f63eb606543c915983a2 a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf9dd16bd89e7230c9cd3700552ef88e6 7f8a11738b67297ce109aa159537fd81e5606523 ad2d399d6c135f4c9e8b1646cd8812b0f738982eb1ecc3354c0574f90044678e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash15b877e3c04a13242f1e8d068e8cb9ed f1a1a051ce4b6f820bb1e54d6e526a7a07e84117 dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf9dd16bd89e7230c9cd3700552ef88e6 7f8a11738b67297ce109aa159537fd81e5606523 ad2d399d6c135f4c9e8b1646cd8812b0f738982eb1ecc3354c0574f90044678e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js | 142.250.74.33 | 200 OK | 7.5 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1540) Hashd22e40b1bc4f1b0f1727b96a0f32f7dd 57030c5040f0013120cca1e77fe38af35d4610e0 6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Tue, 15 Nov 2022 15:55:37 GMT
expires: Tue, 29 Nov 2022 15:55:37 GMT
cache-control: public, max-age=1209600
age: 73244
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js | 142.250.74.33 | 200 OK | 9.4 kB |
URL HTTP/2tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js IP142.250.74.33:0
File typeASCII text, with very long lines (1596) Hash6b277303de172776fc303dfc195982ef fe6c6af5791742485ae21c4dc02edbee2b426886 c536ada7aa8f4679e0e4f0b99703aab79f6fe32659d777f9c01a7785aa06a36d
GET /pagead/js/r20221110/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9428
x-xss-protection: 0
date: Tue, 15 Nov 2022 15:59:24 GMT
expires: Tue, 29 Nov 2022 15:59:24 GMT
cache-control: public, max-age=1209600
age: 73017
etag: 246362764157784863
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 | 216.58.207.226 | 200 OK | 48 kB |
URL HTTP/2www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914 IP216.58.207.226:0
File typeASCII text, with very long lines (3502) Hash297e24828abaf97fb29460fd75369140 e9e02d737f1bcf9874a55562edff5f795a1c170c cdbe4e689ca060e94f00f0aa4c45a89efacddac90df42929ff42a3bff44a9d3e
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48265
date: Wed, 16 Nov 2022 12:16:21 GMT
expires: Wed, 16 Nov 2022 12:16:21 GMT
cache-control: private, max-age=3000
etag: "1668095300071091"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash15b877e3c04a13242f1e8d068e8cb9ed f1a1a051ce4b6f820bb1e54d6e526a7a07e84117 dacb6aa3a7588b55169efba42082deb1576d69e60ea564826300b404087969e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019 | 142.250.74.163 | 200 OK | 14 kB |
URL HTTP/2www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019 IP142.250.74.163:0
File typeC++ source, ASCII text, with very long lines (1921) Hash48a3f12d2425ba123d53524adc123834 c8f4ecbe239261b944879c18ec1a353d0cc674ba 632e1fbd2bba00a95491c806cdf850014b1b617323f698c492272d917603e20b
GET /mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 15:33:11 GMT
expires: Wed, 08 Feb 2023 15:33:11 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 04 Nov 2022 08:03:27 GMT
content-type: text/javascript
age: 506590
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 | 216.58.207.195 | 200 OK | 28 kB |
URL HTTP/2fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data Hash53b5e785dfdca21fa7adf7119fa1f8cc a3a86dfd216ad29183ba5493ae39d45b62f9d8b8 4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 15:21:36 GMT
expires: Thu, 09 Nov 2023 15:21:36 GMT
cache-control: public, max-age=31536000
age: 593685
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9d96ce61547f9d3184b571ec26c13f61 9607a743ed3f0c67ffd8aa22fdc76070c00b18fc ce83e5b84417ac34b261442b70b71cec63124f57e8baa8acee68dc22c38763c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/measurement/l?ebcid=ALh7CaT9Z6Ec5ZKv033UC420yJZLNZhTTVW6HGUUJYPrPlI0nSPXDMRFtiiq3cAuLFl_Fl5XfwG0pcnh3WAHml-TbJxHSmZS3Q | 142.250.74.164 | 204 No Content | 0 B |
URL HTTP/2www.google.com/ads/measurement/l?ebcid=ALh7CaT9Z6Ec5ZKv033UC420yJZLNZhTTVW6HGUUJYPrPlI0nSPXDMRFtiiq3cAuLFl_Fl5XfwG0pcnh3WAHml-TbJxHSmZS3Q IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaT9Z6Ec5ZKv033UC420yJZLNZhTTVW6HGUUJYPrPlI0nSPXDMRFtiiq3cAuLFl_Fl5XfwG0pcnh3WAHml-TbJxHSmZS3Q HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 16 Nov 2022 12:16:21 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i1.ytimg.com/vi/rHdFcG8JNec/hq1.jpg | 216.58.207.206 | 200 OK | 4.9 kB |
URL HTTP/2i1.ytimg.com/vi/rHdFcG8JNec/hq1.jpg IP216.58.207.206:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data Hash6399924ca9c942f34ec984b152023a7a 5d910c0ce0e3413fcf14ba9f532d4969b64c4b8c 830a265c389c27ec340c94b44923b5ec54814662505950ee780e2d5c509053f4
GET /vi/rHdFcG8JNec/hq1.jpg HTTP/1.1
Host: i1.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 4875
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 10:52:21 GMT
expires: Wed, 16 Nov 2022 12:52:21 GMT
cache-control: public, max-age=7200
etag: "1594715804"
content-type: image/jpeg
age: 5040
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500 | 142.250.74.10 | 200 OK | 5.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500 IP142.250.74.10:0
Hashfd6c4e9db651d0da647b8bc76c138b75 2af3cc63bf832a4ac06f01f38eef84d7c925b75c 8c31ca8cd1ddf218edb973434fbb35a05d089048b2fa4190fefe34fefc09745c
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 12:16:21 GMT
date: Wed, 16 Nov 2022 12:16:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| adservice.google.no/adsid/integrator.js?domain=mydiv.net | 142.250.74.130 | 200 OK | 100 B |
URL HTTP/2adservice.google.no/adsid/integrator.js?domain=mydiv.net IP142.250.74.130:0
File typeASCII text, with no line terminators Hash917951a58be8c6c6f3680159550ba3c2 21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4 cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=mydiv.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 16 Nov 2022 12:16:21 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashed2805f6ae0eb72274b21a645b573acf 57c12db6c601ed965557caecb6003a3d0ff1cf75 a5ddc09a87ebf77fe9deb8d99149e3415241bc13f2f9ba01f996106965b2a613
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcRwXjrb9XLU6GaqBlp_gMoUSFP3Ys7a6UG2go4TcYRNKvdAdLj_Yx5DLDRqKQ&usqp=CAI | 142.250.74.78 | 200 OK | 16 kB |
URL HTTP/2encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcRwXjrb9XLU6GaqBlp_gMoUSFP3Ys7a6UG2go4TcYRNKvdAdLj_Yx5DLDRqKQ&usqp=CAI IP142.250.74.78:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 699x974, components 3\012- data Hash6763fcd9457897678ab009b587bdfeb8 ff50ce0af32c81ad73681fc61ac0c167d7bb0950 4511ad6f56a8c7b17236c68dae0ae9e34d98d5da17930fe93e6cb0725f608b15
GET /shopping?q=tbn:ANd9GcRwXjrb9XLU6GaqBlp_gMoUSFP3Ys7a6UG2go4TcYRNKvdAdLj_Yx5DLDRqKQ&usqp=CAI HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 16540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:19:00 GMT
expires: Wed, 15 Nov 2023 14:19:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Jun 2022 02:42:05 GMT
content-type: image/jpeg
age: 79042
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcQ1Ii5uwW-lDIQb_YOSIRFNuqD_a-DPloODkIAijMFYD8DR6iBJhCh5eaU2qeo&usqp=CAI | 142.250.74.78 | 200 OK | 22 kB |
URL HTTP/2encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcQ1Ii5uwW-lDIQb_YOSIRFNuqD_a-DPloODkIAijMFYD8DR6iBJhCh5eaU2qeo&usqp=CAI IP142.250.74.78:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 699x868, components 3\012- data Hash18fe61d45ddbc18e8d1cc580be60b492 3db0619368f70cc6a8db0600114ab8c2a7a19158 98d478ea233a1eb659a38241b2eb10fb41e72ee5ae410263171ad3125acd1243
GET /shopping?q=tbn:ANd9GcQ1Ii5uwW-lDIQb_YOSIRFNuqD_a-DPloODkIAijMFYD8DR6iBJhCh5eaU2qeo&usqp=CAI HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 22129
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 13:31:28 GMT
expires: Sat, 11 Nov 2023 13:31:28 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 18 Jun 2022 22:02:02 GMT
content-type: image/jpeg
age: 427494
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcSfxfzbdeeOrcmMBkUDRE2-WErVkX_QVZdkbEAI1QLixr2sfCSD&usqp=CAI | 142.250.74.78 | 200 OK | 11 kB |
URL HTTP/2encrypted-tbn0.gstatic.com/shopping?q=tbn:ANd9GcSfxfzbdeeOrcmMBkUDRE2-WErVkX_QVZdkbEAI1QLixr2sfCSD&usqp=CAI IP142.250.74.78:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 583x800, components 3\012- data Hash5b27e648991d5101f4bd4d19a9bc526e 857c5a4c2fdd4a0bd6afa422d69045ffe99bbf6e c331ec297f036311712ace139a5c0357b225994dd124700ded4f1101b88dd872
GET /shopping?q=tbn:ANd9GcSfxfzbdeeOrcmMBkUDRE2-WErVkX_QVZdkbEAI1QLixr2sfCSD&usqp=CAI HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 11205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:19:02 GMT
expires: Wed, 15 Nov 2023 14:19:02 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 19 Jun 2022 01:33:03 GMT
content-type: image/jpeg
age: 79040
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcSa6uug8C3ru--YjcKhpE6OEkIWFX1ava-mYhoFAJtfkoTtDPNh5AaOBC8A-yI&usqp=CAI | 142.250.74.46 | 200 OK | 13 kB |
URL HTTP/2encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcSa6uug8C3ru--YjcKhpE6OEkIWFX1ava-mYhoFAJtfkoTtDPNh5AaOBC8A-yI&usqp=CAI IP142.250.74.46:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 737x699, components 3\012- data Hashd0ec0e45aadb953449ab710891e1dcac 64eae0e4ce4ea69907f164b89972b2e68f2e2158 67e527473f0f0b36414a6221450cf9bb6b6b9c97de334ecb755978da3fbc31f1
GET /shopping?q=tbn:ANd9GcSa6uug8C3ru--YjcKhpE6OEkIWFX1ava-mYhoFAJtfkoTtDPNh5AaOBC8A-yI&usqp=CAI HTTP/1.1
Host: encrypted-tbn3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 12576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 19:04:20 GMT
expires: Wed, 15 Nov 2023 19:04:20 GMT
cache-control: public, max-age=31536000
age: 61922
last-modified: Wed, 24 Aug 2022 02:05:01 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| encrypted-tbn2.gstatic.com/shopping?q=tbn:ANd9GcRYmBJk3KZojMYprekeiig8rFHuCjXLJjL1EMzAy90pHHVFNTAOrCyWmSkemQ&usqp=CAI | 216.58.207.238 | 200 OK | 15 kB |
URL HTTP/2encrypted-tbn2.gstatic.com/shopping?q=tbn:ANd9GcRYmBJk3KZojMYprekeiig8rFHuCjXLJjL1EMzAy90pHHVFNTAOrCyWmSkemQ&usqp=CAI IP216.58.207.238:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x920, components 3\012- data Hasha0e8c89e702375049e3d08e73a084e8e 626b3182144f42fd5860509e1b7491569a578358 63f29804db43a9bfe103ecc141bc89ebfdc24dd36c572efbb60a5e55f6d6757b
GET /shopping?q=tbn:ANd9GcRYmBJk3KZojMYprekeiig8rFHuCjXLJjL1EMzAy90pHHVFNTAOrCyWmSkemQ&usqp=CAI HTTP/1.1
Host: encrypted-tbn2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 14652
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 13:19:58 GMT
expires: Sat, 11 Nov 2023 13:19:58 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 19 May 2022 20:34:36 GMT
content-type: image/jpeg
age: 428184
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashed2805f6ae0eb72274b21a645b573acf 57c12db6c601ed965557caecb6003a3d0ff1cf75 a5ddc09a87ebf77fe9deb8d99149e3415241bc13f2f9ba01f996106965b2a613
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 12:16:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcQVpg0AxbkPc1J-rsm_jfOrCAEIBEPCeO4mr1eH0kSk0rsvm74&usqp=CAI | 142.250.74.46 | 200 OK | 18 kB |
URL HTTP/2encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcQVpg0AxbkPc1J-rsm_jfOrCAEIBEPCeO4mr1eH0kSk0rsvm74&usqp=CAI IP142.250.74.46:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1100x550, components 3\012- data Hash98fc2279b458385d57228f2a2e3dda3d 84eb2bdcc28893b7e10d24b9ce58abdd26077524 235a99b5b810981a52c6943c31165ee9869b404b8b8322d8edc5a3d396b43747
GET /shopping?q=tbn:ANd9GcQVpg0AxbkPc1J-rsm_jfOrCAEIBEPCeO4mr1eH0kSk0rsvm74&usqp=CAI HTTP/1.1
Host: encrypted-tbn3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 18322
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 16:56:15 GMT
expires: Fri, 10 Nov 2023 16:56:15 GMT
cache-control: public, max-age=31536000
age: 501607
last-modified: Thu, 10 Sep 2020 13:56:28 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcSCMV9Gm3IMgxOZi0psk45Zb7Lev0iJ3nr4O5hdeXqsBuwl4bCfpatFN5XBiA&usqp=CAI | 142.250.74.46 | 200 OK | 13 kB |
URL HTTP/2encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcSCMV9Gm3IMgxOZi0psk45Zb7Lev0iJ3nr4O5hdeXqsBuwl4bCfpatFN5XBiA&usqp=CAI IP142.250.74.46:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 522x522, components 3\012- data Hashc112cb7e6f6e40aa43a39379958f688e e05c71037a28e3b9840fc2aa626f28afacbc766c b03826c344d3d9c977a8719e5d3344bb8aa83ab2f5b632c5b3025e8f38ce4c9a
GET /shopping?q=tbn:ANd9GcSCMV9Gm3IMgxOZi0psk45Zb7Lev0iJ3nr4O5hdeXqsBuwl4bCfpatFN5XBiA&usqp=CAI HTTP/1.1
Host: encrypted-tbn3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 13343
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 09:10:37 GMT
expires: Thu, 16 Nov 2023 09:10:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 16 Nov 2022 08:06:20 GMT
content-type: image/jpeg
age: 11145
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| csi.gstatic.com/csi?v=2&s=ima&puid=1~lajlxwv3&c=4737942570170&slotId=2368971285085&qqid=CLWe14XXsvsCFVLbGAodaQwJmQ&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=ssc&ulv=1 | 142.250.178.131 | 204 No Content | 0 B |
URL HTTP/2csi.gstatic.com/csi?v=2&s=ima&puid=1~lajlxwv3&c=4737942570170&slotId=2368971285085&qqid=CLWe14XXsvsCFVLbGAodaQwJmQ&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=ssc&ulv=1 IP142.250.178.131:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lajlxwv3&c=4737942570170&slotId=2368971285085&qqid=CLWe14XXsvsCFVLbGAodaQwJmQ&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=ssc&ulv=1 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Wed, 16 Nov 2022 12:16:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=665540064&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121622%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=665540064&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121622%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=665540064&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121622%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 132930
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:23 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:23 GMT
last-modified: Wed, 16-Nov-2022 12:16:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=626887593&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=626887593&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=626887593&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600983%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600983&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:23 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:23 GMT
last-modified: Wed, 16-Nov-2022 12:16:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=505657186&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=505657186&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=505657186&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121623%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 597
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:24 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:24 GMT
last-modified: Wed, 16-Nov-2022 12:16:24 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678513565&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121624%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678513565&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121624%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=2&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=678513565&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600984%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121624%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600984&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 168
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:24 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:24 GMT
last-modified: Wed, 16-Nov-2022 12:16:24 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wv-check=55151&wv-type=0&wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=876511281&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wv-check=55151&wv-type=0&wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=876511281&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wv-check=55151&wv-type=0&wmode=0&wv-part=1&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=876511281&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:26 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:26 GMT
last-modified: Wed, 16-Nov-2022 12:16:26 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=913750843&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=913750843&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=913750843&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:26 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:26 GMT
last-modified: Wed, 16-Nov-2022 12:16:26 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=584957566&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) | 87.250.251.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=584957566&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) IP87.250.251.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/52589233?wmode=0&wv-part=3&wv-hit=355772051&page-url=https%3A%2F%2Fmydiv.net%2F&rn=584957566&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1668600986%3Aw%3A1268x898%3Av%3A921%3Az%3A0%3Ai%3A20221116121626%3Au%3A1668600979404759079%3Avf%3A15m5t3makqb6yg1f8bcanw%3Awe%3A1%3Ast%3A1668600986&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://mydiv.net
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 16 Nov 2022 12:16:26 GMT
access-control-allow-origin: https://mydiv.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 16-Nov-2022 12:16:26 GMT
last-modified: Wed, 16-Nov-2022 12:16:26 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
GET /build/public/styles/site.mydiv.css?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: text/css
last-modified: Tue, 24 May 2022 08:09:26 GMT
vary: Accept-Encoding
etag: W/"628c92b6-29bae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 IP54.36.106.111:0
GET /build/public/langchunks/lang.ru_RU.chunk.js?ver=be523bf50222071760d4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883; _ym_uid=1668600979404759079; _ym_d=1668600979
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-121a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668629781&ei=ldR0Y-vHFLOQv_IP8MSVmAo&ip=91.90.42.154&id=ac7745706f0935e7&itag=18&source=youtube&requiressl=yes&mh=ss&mm=31&mn=sn-capm-vnae&ms=au&mv=m&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=45.929&lmt=1655721704938151&mt=1668600588&txp=2210224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAKYQD8_bOjumFSWee1u0DTns9uQftBZQ05Bp9jMOhdurAiAbG-JNgqgYhAIvSHT76FZ4yVsEFnnYuhYHUE2-zmlMZA==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNpR61xwdI-ZJL1k1Z_60ZifOE3DxAwJyv4-NZrRBebUCIQDVpQYjP8N6lHN35956y6giISXaZnVc9g49LZ-zUYKmiQ==&cpn=kCEhCxPbr0bL3CYV | 91.90.45.172 | 206 Partial Content | 0 B |
URL HTTP/1.1rr1---sn-capm-vnae.googlevideo.com/videoplayback?expire=1668629781&ei=ldR0Y-vHFLOQv_IP8MSVmAo&ip=91.90.42.154&id=ac7745706f0935e7&itag=18&source=youtube&requiressl=yes&mh=ss&mm=31&mn=sn-capm-vnae&ms=au&mv=m&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=45.929&lmt=1655721704938151&mt=1668600588&txp=2210224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAKYQD8_bOjumFSWee1u0DTns9uQftBZQ05Bp9jMOhdurAiAbG-JNgqgYhAIvSHT76FZ4yVsEFnnYuhYHUE2-zmlMZA==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNpR61xwdI-ZJL1k1Z_60ZifOE3DxAwJyv4-NZrRBebUCIQDVpQYjP8N6lHN35956y6giISXaZnVc9g49LZ-zUYKmiQ==&cpn=kCEhCxPbr0bL3CYV IP91.90.45.172:0 ASN#50304 Blix Solutions AS
GET /videoplayback?expire=1668629781&ei=ldR0Y-vHFLOQv_IP8MSVmAo&ip=91.90.42.154&id=ac7745706f0935e7&itag=18&source=youtube&requiressl=yes&mh=ss&mm=31&mn=sn-capm-vnae&ms=au&mv=m&mvi=1&pl=21&susc=gvp&acao=yes&ctier=L&mime=video/mp4&vprv=1&dur=45.929&lmt=1655721704938151&mt=1668600588&txp=2210224&sparams=expire,ei,ip,id,itag,source,requiressl,susc,acao,ctier,mime,vprv,dur,lmt&sig=AOq0QJ8wRQIhAKYQD8_bOjumFSWee1u0DTns9uQftBZQ05Bp9jMOhdurAiAbG-JNgqgYhAIvSHT76FZ4yVsEFnnYuhYHUE2-zmlMZA==&lsparams=mh,mm,mn,ms,mv,mvi,pl&lsig=AG3C_xAwRQIgNpR61xwdI-ZJL1k1Z_60ZifOE3DxAwJyv4-NZrRBebUCIQDVpQYjP8N6lHN35956y6giISXaZnVc9g49LZ-zUYKmiQ==&cpn=kCEhCxPbr0bL3CYV HTTP/1.1
Host: rr1---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Last-Modified: Mon, 20 Jun 2022 10:41:44 GMT
Content-Type: video/mp4
Date: Wed, 16 Nov 2022 12:16:21 GMT
Expires: Wed, 16 Nov 2022 12:16:21 GMT
Cache-Control: private, max-age=28500
Content-Range: bytes 0-3022628/3022629
Accept-Ranges: bytes
Content-Length: 3022629
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
|
|
| mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 | 54.36.106.111 | 200 OK | 0 B |
URL HTTP/2mydiv.net/build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 IP54.36.106.111:0
GET /build/public/site.mydiv.bundle.js?ver=a95eb927769ae313b1a4 HTTP/1.1
Host: mydiv.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Cookie: suid=a3b4adab5382afebc8f50479d26f6a23fbc2561bd445de15c7ed5f82903b7f8d; ifh=14288207956374d4926ce151.98800883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.7
date: Wed, 16 Nov 2022 12:16:19 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 25 May 2022 21:13:43 GMT
vary: Accept-Encoding
etag: W/"628e9c07-46126"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| yandex.ru/ads/system/context.js | 77.88.55.70 | 200 OK | 0 B |
URL HTTP/2yandex.ru/ads/system/context.js IP77.88.55.70:0
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydiv.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=04ZWDb0kLRx1GWBpUTuDt3nQyPFzqc/e5DkgkADjPkTV1Y0ZVgkj18tPfuF6oTqEtaarc6VZyYs53xtpysagS6C8JsM=; Expires=Fri, 15-Nov-2024 12:16:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
expires: Wed, 16 Nov 2022 13:16:19 GMT
x-yandex-req-id: 1668600979699762-8014270084094102075-sas3-0804-36f-sas-l7-balancer-8080-BAL-9805
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
|
|