atavi.com Open in urlscan Pro
84.252.139.239 Public Scan

Go To Rescan
Add Verdict Report

URL:
https://atavi.com/share/wj7iyhzocihp
Submission: On March 04 via manual (March 4th 2024, 8:12:31 am UTC) from GB — Scanned from IL

Summary HTTP 189 Redirects Links 6 Behaviour Indicators

Summary

This website contacted 37 IPs in 8 countries across 51 domains to perform 189 HTTP transactions. The main IP is 84.252.139.239, located in Russian Federation and belongs to YANDEXCLOUD, RU. The main domain is atavi.com.
TLS certificate: Issued by R3 on March 1st 2024. Valid for: 3 months.

This is the only time atavi.com was scanned on urlscan.io!

urlscan.io Verdict: No classification

Domain & IP information

	IP Address	AS Autonomous System
55	84.252.139.239 84.252.139.239	200350 (YANDEXCLOUD) (YANDEXCLOUD)
11	172.217.16.130 172.217.16.130	15169 (GOOGLE) (GOOGLE)
7 15	5.255.255.70 5.255.255.70	208398 (TELETECH) (TELETECH)
2	51.250.100.50 51.250.100.50	200350 (YANDEXCLOUD) (YANDEXCLOUD)
2	142.250.186.136 142.250.186.136	15169 (GOOGLE) (GOOGLE)
2 11	87.250.250.119 87.250.250.119	208398 (TELETECH) (TELETECH)
2	142.250.185.174 142.250.185.174	15169 (GOOGLE) (GOOGLE)
4	95.163.52.67 95.163.52.67	47764 (VK-AS) (VK-AS)
2	157.240.0.6 157.240.0.6	32934 (FACEBOOK) (FACEBOOK)
1 2	88.212.201.198 88.212.201.198	39134 (UNITEDNET) (UNITEDNET)
2	87.240.137.164 87.240.137.164	47541 (VKONTAKTE...) (VKONTAKTE-SPB-AS vk.com)
2	172.217.18.2 172.217.18.2	15169 (GOOGLE) (GOOGLE)
2	64.233.184.156 64.233.184.156	15169 (GOOGLE) (GOOGLE)
7	178.154.131.217 178.154.131.217	208398 (TELETECH) (TELETECH)
1	157.240.253.35 157.240.253.35	32934 (FACEBOOK) (FACEBOOK)
2	142.250.184.196 142.250.184.196	15169 (GOOGLE) (GOOGLE)
2	172.217.18.99 172.217.18.99	15169 (GOOGLE) (GOOGLE)
1	216.239.32.181 216.239.32.181	15169 (GOOGLE) (GOOGLE)
1 18	213.180.193.90 213.180.193.90	208398 (TELETECH) (TELETECH)
5	87.250.247.183 87.250.247.183	208398 (TELETECH) (TELETECH)
5	77.88.21.36 77.88.21.36	208398 (TELETECH) (TELETECH)
11	142.250.181.238 142.250.181.238	15169 (GOOGLE) (GOOGLE)
1	35.177.4.157 35.177.4.157	16509 (AMAZON-02) (AMAZON-02)
3 3	193.3.184.130 193.3.184.130	50214 (QWARTA) (QWARTA)
1 1	193.3.184.217 193.3.184.217	50214 (QWARTA) (QWARTA)
3 4	188.42.191.196 188.42.191.196	7979 (SERVERS-COM) (SERVERS-COM)
1 2	63.34.206.49 63.34.206.49	16509 (AMAZON-02) (AMAZON-02)
1	52.45.175.185 52.45.175.185	14618 (AMAZON-AES) (AMAZON-AES)
1	95.163.41.56 95.163.41.56	47764 (VK-AS) (VK-AS)
1 1	159.89.214.102 159.89.214.102	14061 (DIGITALOC...) (DIGITALOCEAN-ASN)
2 2	35.214.149.91 35.214.149.91	15169 (GOOGLE) (GOOGLE)
1	35.214.164.50 35.214.164.50	15169 (GOOGLE) (GOOGLE)
2	194.55.244.185 194.55.244.185	34959 (PROCLOUD ...) (PROCLOUD PROCLOUD MSK)
1	77.245.57.72 77.245.57.72	36057 (WEBAIR-IN...) (WEBAIR-INTERNET-MTL)
1 1	194.226.130.227 194.226.130.227	52016 (ADFACT) (ADFACT)
1 2	34.111.129.221 34.111.129.221	396982 (GOOGLE-CL...) (GOOGLE-CLOUD-PLATFORM)
2 2	37.230.131.16 37.230.131.16	200197 (HYBRID-PO...) (HYBRID-POLAND)
2 2	185.15.175.144 185.15.175.144	43226 (SAFEDATA ...) (SAFEDATA Uplinks)
1 1	84.38.189.213 84.38.189.213	49505 (SELECTEL) (SELECTEL)
2 3	52.208.220.232 52.208.220.232	16509 (AMAZON-02) (AMAZON-02)
1 1	167.235.33.115 167.235.33.115	24940 (HETZNER-AS) (HETZNER-AS)
1 1	51.250.77.168 51.250.77.168	200350 (YANDEXCLOUD) (YANDEXCLOUD)
1 1	47.253.61.56 47.253.61.56	45102 (ALIBABA-C...) (ALIBABA-CN-NET Alibaba US Technology Co.)
1 1	217.65.2.150 217.65.2.150	3175 (CITYTELEC...) (CITYTELECOM-MSK)
1 2	195.201.240.61 195.201.240.61	() ()
1 1	91.192.149.30 91.192.149.30	42481 (BEGUN-AS) (BEGUN-AS)
2 2	193.232.148.134 193.232.148.134	() ()
1 1	185.98.54.153 185.98.54.153	39572 (ADVANCEDH...) (ADVANCEDHOSTERS-AS)
1 2	77.244.216.90 77.244.216.90	49505 (SELECTEL) (SELECTEL)
2	81.222.128.217 81.222.128.217	() ()
3	142.250.186.129 142.250.186.129	15169 (GOOGLE) (GOOGLE)
189	37

55 84.252.139.239 (Russian Federation)

ASN200350 (YANDEXCLOUD, RU)

atavi.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

11 172.217.16.130 (United States)

ASN15169 (GOOGLE, US)
PTR: fra15s46-in-f2.1e100.net

pagead2.googlesyndication.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

15 5.255.255.70 (Russian Federation) 7 redirects

ASN208398 (TELETECH, RS)
PTR: yandex.ru

yandex.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 51.250.100.50 (Russian Federation)

ASN200350 (YANDEXCLOUD, RU)

rgw.atavi.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 142.250.186.136 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s07-in-f8.1e100.net

www.googletagmanager.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

11 87.250.250.119 (Russian Federation) 2 redirects

ASN208398 (TELETECH, RS)
PTR: mc.yandex.ru

mc.yandex.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 142.250.185.174 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s51-in-f14.1e100.net

www.google-analytics.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

4 95.163.52.67 (Russian Federation)

ASN47764 (VK-AS, RU)
PTR: top-fwz1.mail.ru

top-fwz1.mail.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 157.240.0.6 (Frankfurt am Main, Germany)

ASN32934 (FACEBOOK, US)
PTR: xx-fbcdn-shv-02-fra3.fbcdn.net

connect.facebook.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 88.212.201.198 (Russian Federation) 1 redirects

ASN39134 (UNITEDNET, RU)
PTR: host198.rax.ru

counter.yadro.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 87.240.137.164 (Russian Federation)

ASN47541 (VKONTAKTE-SPB-AS vk.com, RU)
PTR: srv164-137-240-87.vk.com

vk.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 172.217.18.2 (United States)

ASN15169 (GOOGLE, US)
PTR: fra15s28-in-f2.1e100.net

googleads.g.doubleclick.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 64.233.184.156 (United States)

ASN15169 (GOOGLE, US)
PTR: wa-in-f156.1e100.net

stats.g.doubleclick.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

7 178.154.131.217 (Russian Federation)

ASN208398 (TELETECH, RS)
PTR: static.yandex.net

yastatic.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 157.240.253.35 (Frankfurt am Main, Germany)

ASN32934 (FACEBOOK, US)
PTR: edge-star-mini-shv-02-fra5.facebook.com

www.facebook.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 142.250.184.196 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s11-in-f4.1e100.net

www.google.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 172.217.18.99 (United States)

ASN15169 (GOOGLE, US)
PTR: zrh04s05-in-f99.1e100.net

www.google.co.il	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 216.239.32.181 (United States)

ASN15169 (GOOGLE, US)

analytics.google.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

18 213.180.193.90 (Russian Federation) 1 redirects

ASN208398 (TELETECH, RS)
PTR: bs.yandex.ru

an.yandex.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

5 87.250.247.183 (Russian Federation)

ASN208398 (TELETECH, RS)
PTR: avatars.mds.yandex.net

avatars.mds.yandex.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

5 77.88.21.36 (Russian Federation)

ASN208398 (TELETECH, RS)
PTR: favicon.yandex.net

favicon.yandex.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

11 142.250.181.238 (United States)

ASN15169 (GOOGLE, US)
PTR: fra16s56-in-f14.1e100.net

fundingchoicesmessages.google.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 35.177.4.157 (London, United Kingdom)

ASN16509 (AMAZON-02, US)
PTR: ec2-35-177-4-157.eu-west-2.compute.amazonaws.com

px.arcspire.io	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

3 193.3.184.130 (Russian Federation) 3 redirects

ASN50214 (QWARTA, RU)

acint.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 193.3.184.217 (Russian Federation) 1 redirects

ASN50214 (QWARTA, RU)

ssp-rtb.sape.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

4 188.42.191.196 (Luxembourg) 3 redirects

ASN7979 (SERVERS-COM, US)

ads.betweendigital.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 63.34.206.49 (Dublin, Ireland) 1 redirects

ASN16509 (AMAZON-02, US)
PTR: ec2-63-34-206-49.eu-west-1.compute.amazonaws.com

dpm.demdex.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 52.45.175.185 (Ashburn, United States)

ASN14618 (AMAZON-AES, US)
PTR: ec2-52-45-175-185.compute-1.amazonaws.com

im.bluevoox.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 95.163.41.56 (Russian Federation)

ASN47764 (VK-AS, RU)
PTR: r.mail.ru

ad.mail.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 159.89.214.102 (Frankfurt am Main, Germany) 1 redirects

ASN14061 (DIGITALOCEAN-ASN, US)

yandex.digital-services.solutions	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 35.214.149.91 (Groningen, Netherlands) 2 redirects

ASN15169 (GOOGLE, US)
PTR: 91.149.214.35.bc.googleusercontent.com

x.bidswitch.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 35.214.164.50 (Groningen, Netherlands)

ASN15169 (GOOGLE, US)
PTR: 50.164.214.35.bc.googleusercontent.com

csync.loopme.me	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 194.55.244.185 (Moscow, Russian Federation)

ASN34959 (PROCLOUD PROCLOUD MSK, RU)

sync.dmp.otm-r.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 77.245.57.72 (United States)

ASN36057 (WEBAIR-INTERNET-MTL, US)

sync.adkernel.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 194.226.130.227 (Russian Federation) 1 redirects

ASN52016 (ADFACT, RU)

cm.tns-counter.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 34.111.129.221 (Kansas City, United States) 1 redirects

ASN396982 (GOOGLE-CLOUD-PLATFORM, US)
PTR: 221.129.111.34.bc.googleusercontent.com

cr.frontend.weborama.fr	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 37.230.131.16 (Amsterdam, Netherlands) 2 redirects

ASN200197 (HYBRID-POLAND, PL)

dm.hybrid.ai	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 185.15.175.144 (Russian Federation) 2 redirects

ASN43226 (SAFEDATA Uplinks, RU)

dmg.digitaltarget.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 84.38.189.213 (St Petersburg, Russian Federation) 1 redirects

ASN49505 (SELECTEL, RU)

dsp.mpartner.digital	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

3 52.208.220.232 (Dublin, Ireland) 2 redirects

ASN16509 (AMAZON-02, US)
PTR: ec2-52-208-220-232.eu-west-1.compute.amazonaws.com

euw-ice.360yield.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools
match.360yield.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 167.235.33.115 (Bühl, Germany) 1 redirects

ASN24940 (HETZNER-AS, DE)
PTR: static.115.33.235.167.clients.your-server.de

exchange.buzzoola.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 51.250.77.168 (Russian Federation) 1 redirects

ASN200350 (YANDEXCLOUD, RU)

eye.targetads.io	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 47.253.61.56 (United States) 1 redirects

ASN45102 (ALIBABA-CN-NET Alibaba US Technology Co., Ltd., CN)

gw-iad-bid.ymmobi.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 217.65.2.150 (Moscow, Russian Federation) 1 redirects

ASN3175 (CITYTELECOM-MSK, RU)

match.new-programmatic.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 195.201.240.61 (None, ) 1 redirects

ASN- ()

nr.bidderstack.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 91.192.149.30 (Russian Federation) 1 redirects

ASN42481 (BEGUN-AS, RU)
PTR: zvezda.ssp.rambler.ru

profile.ssp.rambler.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 193.232.148.134 (None, ) 2 redirects

ASN- ()

px.adhigh.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

1 185.98.54.153 (Netherlands) 1 redirects

ASN39572 (ADVANCEDHOSTERS-AS, NL)

s.uuidksinc.net	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 77.244.216.90 (St Petersburg, Russian Federation) 1 redirects

ASN49505 (SELECTEL, RU)

shopnetic.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

2 81.222.128.217 (None, )

ASN- ()

ssp.adriver.ru	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

3 142.250.186.129 (United States)

ASN15169 (GOOGLE, US)
PTR: fra24s07-in-f1.1e100.net

tpc.googlesyndication.com	Domain lookup VirusTotal SecurityTrails crt.sh Censys Domaintools

	Apex Domain Subdomains	Transfer
57	atavi.com atavi.com rgw.atavi.com	920 KB
44	yandex.ru 10 redirects yandex.ru — Cisco Umbrella Rank: 2096 mc.yandex.ru — Cisco Umbrella Rank: 4006 an.yandex.ru — Cisco Umbrella Rank: 6714 ysa-static.passport.yandex.ru Failed	229 KB
14	google.com www.google.com — Cisco Umbrella Rank: 2 analytics.google.com — Cisco Umbrella Rank: 148 fundingchoicesmessages.google.com — Cisco Umbrella Rank: 647	71 KB
14	googlesyndication.com pagead2.googlesyndication.com — Cisco Umbrella Rank: 104 tpc.googlesyndication.com — Cisco Umbrella Rank: 161	283 KB
10	yandex.net avatars.mds.yandex.net — Cisco Umbrella Rank: 7902 favicon.yandex.net — Cisco Umbrella Rank: 10986	38 KB
7	yastatic.net yastatic.net — Cisco Umbrella Rank: 6689	199 KB
5	mail.ru top-fwz1.mail.ru — Cisco Umbrella Rank: 10593 ad.mail.ru — Cisco Umbrella Rank: 11539	24 KB
4	betweendigital.com 3 redirects ads.betweendigital.com — Cisco Umbrella Rank: 1967	3 KB
4	doubleclick.net googleads.g.doubleclick.net — Cisco Umbrella Rank: 35 stats.g.doubleclick.net — Cisco Umbrella Rank: 84 cm.g.doubleclick.net Failed	10 KB
3	360yield.com 2 redirects euw-ice.360yield.com — Cisco Umbrella Rank: 12791 match.360yield.com — Cisco Umbrella Rank: 2065	834 B
3	acint.net 3 redirects acint.net — Cisco Umbrella Rank: 21301	1 KB
2	adriver.ru ssp.adriver.ru	402 B
2	shopnetic.com 1 redirects shopnetic.com — Cisco Umbrella Rank: 68187	545 B
2	adhigh.net 2 redirects px.adhigh.net	814 B
2	bidderstack.com 1 redirects nr.bidderstack.com	566 B
2	digitaltarget.ru 2 redirects dmg.digitaltarget.ru — Cisco Umbrella Rank: 23470	1 KB
2	hybrid.ai 2 redirects dm.hybrid.ai — Cisco Umbrella Rank: 31986	837 B
2	weborama.fr 1 redirects cr.frontend.weborama.fr — Cisco Umbrella Rank: 24942	535 B
2	otm-r.com sync.dmp.otm-r.com — Cisco Umbrella Rank: 24406	137 B
2	bidswitch.net 2 redirects x.bidswitch.net — Cisco Umbrella Rank: 383	1 KB
2	demdex.net 1 redirects dpm.demdex.net — Cisco Umbrella Rank: 246	1 KB
2	google.co.il www.google.co.il — Cisco Umbrella Rank: 16668	515 B
2	vk.com vk.com — Cisco Umbrella Rank: 7136	1 KB
2	yadro.ru 1 redirects counter.yadro.ru — Cisco Umbrella Rank: 12492	1 KB
2	facebook.net connect.facebook.net — Cisco Umbrella Rank: 180	69 KB
2	google-analytics.com www.google-analytics.com — Cisco Umbrella Rank: 29	21 KB
2	googletagmanager.com www.googletagmanager.com — Cisco Umbrella Rank: 40	135 KB
1	uuidksinc.net 1 redirects s.uuidksinc.net — Cisco Umbrella Rank: 11797	205 B
1	rambler.ru 1 redirects profile.ssp.rambler.ru — Cisco Umbrella Rank: 51742	228 B
1	new-programmatic.com 1 redirects match.new-programmatic.com — Cisco Umbrella Rank: 40580	262 B
1	ymmobi.com 1 redirects gw-iad-bid.ymmobi.com — Cisco Umbrella Rank: 1850	376 B
1	targetads.io 1 redirects eye.targetads.io — Cisco Umbrella Rank: 67215	212 B
1	buzzoola.com 1 redirects exchange.buzzoola.com — Cisco Umbrella Rank: 19658	178 B
1	mpartner.digital 1 redirects dsp.mpartner.digital — Cisco Umbrella Rank: 62471	374 B
1	tns-counter.ru 1 redirects cm.tns-counter.ru — Cisco Umbrella Rank: 72318	388 B
1	adkernel.com sync.adkernel.com — Cisco Umbrella Rank: 1738	202 B
1	loopme.me csync.loopme.me — Cisco Umbrella Rank: 931	152 B
1	digital-services.solutions 1 redirects yandex.digital-services.solutions — Cisco Umbrella Rank: 39629	274 B
1	bluevoox.com im.bluevoox.com — Cisco Umbrella Rank: 37763	241 B
1	sape.ru 1 redirects ssp-rtb.sape.ru — Cisco Umbrella Rank: 27863	698 B
1	arcspire.io px.arcspire.io — Cisco Umbrella Rank: 68530	124 B
1	facebook.com www.facebook.com — Cisco Umbrella Rank: 100	185 B
0	rutarget.ru Failed yandex-dmp-sync.rutarget.ru Failed yandex-sync.rutarget.ru Failed
0	aidata.io Failed x01.aidata.io Failed
0	upravel.com Failed sync.upravel.com Failed
0	bumlam.com Failed sync.bumlam.com Failed
0	magnitent.com Failed sync.magnitent.com Failed
0	intent.ai Failed rtb-eu-warsaw.intent.ai Failed
0	whiteboxdigital.ru Failed mitdmp.whiteboxdigital.ru Failed
0	mts.ru Failed tech.rtb.mts.ru Failed
0	opera.com Failed t.adx.opera.com Failed
189	51

	Domain	Requested by
55	atavi.com	atavi.com
18	an.yandex.ru	1 redirects yandex.ru
15	yandex.ru	7 redirects atavi.com yandex.ru yastatic.net
11	fundingchoicesmessages.google.com	pagead2.googlesyndication.com
11	mc.yandex.ru	2 redirects atavi.com mc.yandex.ru
11	pagead2.googlesyndication.com	atavi.com pagead2.googlesyndication.com tpc.googlesyndication.com
7	yastatic.net	yandex.ru yastatic.net atavi.com
5	favicon.yandex.net	atavi.com
5	avatars.mds.yandex.net	atavi.com
4	ads.betweendigital.com	3 redirects
4	top-fwz1.mail.ru	atavi.com top-fwz1.mail.ru
3	tpc.googlesyndication.com	pagead2.googlesyndication.com tpc.googlesyndication.com
3	acint.net	3 redirects
2	ssp.adriver.ru	atavi.com
2	shopnetic.com	1 redirects
2	px.adhigh.net	2 redirects
2	nr.bidderstack.com	1 redirects
2	euw-ice.360yield.com	2 redirects
2	dmg.digitaltarget.ru	2 redirects
2	dm.hybrid.ai	2 redirects
2	cr.frontend.weborama.fr	1 redirects atavi.com
2	sync.dmp.otm-r.com	atavi.com
2	x.bidswitch.net	2 redirects
2	dpm.demdex.net	1 redirects
2	www.google.co.il	atavi.com
2	www.google.com	atavi.com tpc.googlesyndication.com
2	stats.g.doubleclick.net	www.google-analytics.com www.googletagmanager.com
2	googleads.g.doubleclick.net	pagead2.googlesyndication.com
2	vk.com	atavi.com
2	counter.yadro.ru	1 redirects atavi.com
2	connect.facebook.net	atavi.com connect.facebook.net
2	www.google-analytics.com	atavi.com www.google-analytics.com
2	www.googletagmanager.com	atavi.com www.google-analytics.com
2	rgw.atavi.com	atavi.com
1	s.uuidksinc.net	1 redirects
1	profile.ssp.rambler.ru	1 redirects
1	match.new-programmatic.com	1 redirects
1	gw-iad-bid.ymmobi.com	1 redirects
1	eye.targetads.io	1 redirects
1	exchange.buzzoola.com	1 redirects
1	match.360yield.com
1	dsp.mpartner.digital	1 redirects
1	cm.tns-counter.ru	1 redirects
1	sync.adkernel.com	atavi.com
1	csync.loopme.me
1	yandex.digital-services.solutions	1 redirects
1	ad.mail.ru	atavi.com
1	im.bluevoox.com	atavi.com
1	ssp-rtb.sape.ru	1 redirects
1	px.arcspire.io	atavi.com
1	analytics.google.com	www.googletagmanager.com
1	www.facebook.com	atavi.com
0	yandex-sync.rutarget.ru Failed	atavi.com
0	yandex-dmp-sync.rutarget.ru Failed	atavi.com
0	x01.aidata.io Failed	atavi.com
0	sync.upravel.com Failed	atavi.com
0	sync.bumlam.com Failed	atavi.com
0	sync.magnitent.com Failed
0	rtb-eu-warsaw.intent.ai Failed	atavi.com
0	mitdmp.whiteboxdigital.ru Failed	atavi.com
0	tech.rtb.mts.ru Failed
0	t.adx.opera.com Failed	atavi.com
0	cm.g.doubleclick.net Failed	atavi.com
0	ysa-static.passport.yandex.ru Failed	atavi.com
189	64

This site contains links to these domains. Also see Links.

Domain
sandyspringspestcontrol.com
share.yandex.net
m.atavi.com

Subject Issuer	Validity	Valid
atavi.com R3	`2024-03-01` - `2024-05-30`	3 months	crt.sh
*.g.doubleclick.net GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
*.xn--d1acpjx3f.xn--p1ai GlobalSign ECC OV SSL CA 2018	`2023-10-26` - `2024-04-24`	6 months	crt.sh
*.google-analytics.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
mc.yandex.ru GlobalSign ECC OV SSL CA 2018	`2023-12-26` - `2024-06-05`	5 months	crt.sh
*.mail.ru GlobalSign ECC OV SSL CA 2018	`2023-10-06` - `2024-11-06`	a year	crt.sh
*.facebook.com DigiCert SHA2 High Assurance Server CA	`2023-12-12` - `2024-03-11`	3 months	crt.sh
*.vk.com GlobalSign ECC OV SSL CA 2018	`2024-02-14` - `2025-03-02`	a year	crt.sh
*.yastatic-net.ru GlobalSign ECC OV SSL CA 2018	`2023-12-13` - `2024-06-11`	6 months	crt.sh
www.google.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
*.google.co.il GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
*.google.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh
bs.yandex.ru GlobalSign ECC OV SSL CA 2018	`2023-09-24` - `2024-03-24`	6 months	crt.sh
*.avatars.yandex.net GlobalSign RSA OV SSL CA 2018	`2023-09-11` - `2024-04-12`	7 months	crt.sh
favicon.yandex.net GlobalSign ECC OV SSL CA 2018	`2023-10-19` - `2024-03-19`	5 months	crt.sh
*.arcspire.io R3	`2024-02-10` - `2024-05-10`	3 months	crt.sh
*.adriver.ru GlobalSign GCC R3 DV TLS CA 2020	`2023-03-07` - `2024-04-07`	a year	crt.sh
*.dmp.otm-r.com AlphaSSL CA - SHA256 - G4	`2023-06-19` - `2024-07-20`	a year	crt.sh
tpc.googlesyndication.com GTS CA 1C3	`2024-02-05` - `2024-04-29`	3 months	crt.sh

This page contains 6 frames:

Primary Page: https://atavi.com/share/wj7iyhzocihp
Frame ID: 2D6A55B0EF1242868C014B32860CD5B0
Requests: 132 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/html/r20240228/r20190131/zrt_lookup_nohtml_fy2021.html
Frame ID: 82E3DEE9949B0EFE377DD0AB72E1A611
Requests: 1 HTTP requests in this frame

Frame: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4894759983606832&output=html&adk=1812271804&adf=3025194257&lmt=1709539943&plat=1%3A16777216%2C2%3A16777216%2C3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&pra=5&wgl=1&easpi=0&asro=0&aseiel=1~2~4~6~8~9~10~11~12~13~14~15~16~17&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1709539942974&bpp=10&bdt=1197&idt=643&shv=r20240228&mjsv=m202402270101&ptt=9&saldr=aa&abxe=1&nras=1&correlator=2103239785549&frm=20&pv=2&ga_vid=858364001.1709539943&ga_sid=1709539944&ga_hid=553673364&ga_fc=1&u_tz=120&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95325752%2C95322183%2C95321868%2C95324161&oid=2&pvsid=1650485024642107&tmod=555299862&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&psd=W251bGwsbnVsbCxudWxsLDNd&ifi=1&uci=a!1&fsb=1&dtd=668
Frame ID: 5053D99104AD48C14DCEF7074A7EC669
Requests: 1 HTTP requests in this frame

Frame: https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html
Frame ID: 4249957934E5557332074AD849CCE6EF
Requests: 48 HTTP requests in this frame

Frame: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Frame ID: B9EB5DCD27BE9783A60931D2E9B444BC
Requests: 3 HTTP requests in this frame

Frame: https://www.google.com/recaptcha/api2/aframe
Frame ID: DA53B1696B440393FEDF684E4AA2067E
Requests: 2 HTTP requests in this frame

Screenshot
Live screenshot

Full Image

Page Title

Atavi - bookmark manager

Detected technologies

Facebook (Widgets) Expand

Overall confidence: 100%
Detected patterns

//connect\.facebook\.([a-z]+)/[^/]*/[a-z]*\.js

Google AdSense (Advertising Networks) Expand

Overall confidence: 100%
Detected patterns

googlesyndication\.com/

Google Analytics (Analytics) Expand

Overall confidence: 100%
Detected patterns

google-analytics\.com/(?:ga|urchin|analytics)\.js

Google Tag Manager (Tag Managers) Expand

Overall confidence: 100%
Detected patterns

googletagmanager\.com/gtm\.js
googletagmanager\.com/gtag/js

Yandex.Direct (Advertising Networks) Expand

Overall confidence: 100%
Detected patterns

https?://an\.yandex\.ru/

Yandex.Metrika (Analytics) Expand

Overall confidence: 100%
Detected patterns

mc\.yandex\.ru/metrika/(?:tag|watch)\.js

jQuery (JavaScript Libraries) Expand

Overall confidence: 100%
Detected patterns

jquery[.-]([\d.]*\d)[^/]*\.js
jquery.*\.js(?:\?ver(?:sion)?=([\d.]+))?

jQuery UI (JavaScript Libraries) Expand

Overall confidence: 100%
Detected patterns

jquery-ui[.-]([\d.]*\d)[^/]*\.js
jquery-ui.*\.js

Page Statistics

189
Requests

76 %
HTTPS

0 %
IPv6

51
Domains

64
Subdomains

37
IPs

8
Countries

2002 kB
Transfer

4398 kB
Size

70
Cookies

6 Outgoing links

These are links going to different origins than the main page.

URL: https://sandyspringspestcontrol.com/areas.html

Search URL Search Domain Scan URL

URL: https://share.yandex.net/go.xml?service=facebook&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&title=My%20bookmarks%20collection&image=https%3A%2F%2Fatavi.com%2Fi%2Ffavicons%2Fim-300-188.png

Search URL Search Domain Scan URL

URL: https://share.yandex.net/go.xml?service=twitter&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&title=My%20bookmarks%20collection&image=https%3A%2F%2Fatavi.com%2Fi%2Ffavicons%2Fim-300-188.png

Search URL Search Domain Scan URL

URL: https://share.yandex.net/go.xml?service=gplus&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&title=My%20bookmarks%20collection&image=https%3A%2F%2Fatavi.com%2Fi%2Ffavicons%2Fim-300-188.png

Search URL Search Domain Scan URL

URL: https://share.yandex.net/go.xml?service=vkontakte&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&title=My%20bookmarks%20collection&image=https%3A%2F%2Fatavi.com%2Fi%2Ffavicons%2Fim-300-188.png

Search URL Search Domain Scan URL

URL: http://m.atavi.com/
Title: Mobile version

Search URL Search Domain Scan URL

Redirected requests

There were HTTP redirect chains for the following requests:

Request Chain 39

https://counter.yadro.ru/hit?r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392 HTTP 302
https://counter.yadro.ru/hit?q;r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392

Request Chain 80

https://mc.yandex.ru/watch/25117439?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A1%3Adp%3A0%3Als%3A433333015274%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A453418439%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)ti(1) HTTP 302
https://mc.yandex.ru/watch/25117439/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A1%3Adp%3A0%3Als%3A433333015274%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A453418439%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29

Request Chain 81

https://mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A2%3Adp%3A0%3Als%3A122242285070%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A550037837%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr(14)mc(p-1)clc(0-0-0)rqnt(1)aw(1)rcm(1)cdl(na)ti(1) HTTP 302
https://mc.yandex.ru/watch/26812653/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A2%3Adp%3A0%3Als%3A122242285070%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A550037837%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29mc%28p-1%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29

Request Chain 117

https://acint.net/rmatch/?dp=151&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F%24%7BUSER_ID%7D HTTP 302
https://acint.net/rmatch/?r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F$%7BUSER_ID%7D&dp=151&tc=1 HTTP 302
https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fan.yandex.ru%252Fmapuid%252Fsapeis%252F$%257BUSER_ID%257D&dp=14 HTTP 302
https://acint.net/rmatch?dp=14&euid=1D03420A6C82E565F700D214024108E4&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F$%7BUSER_ID%7D HTTP 302
https://an.yandex.ru/mapuid/sapeis/0800007F6C82E5659B17698602B33D6D

Request Chain 118

https://ads.betweendigital.com/match?bidder_id=43554&callback_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbetweendigitalis%2F%24%7BUSER_ID%7D HTTP 302
https://ads.betweendigital.com/match?bidder_id=43554&callback_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbetweendigitalis%2F%24%7BUSER_ID%7D&crf=1&rts=4685510270572020911 HTTP 302
https://an.yandex.ru/mapuid/betweendigitalis/690eacaf-9699-5240-86e1-2687e304a4ec

Request Chain 119

https://yandex.ru/an/mapuid/adobedmp/ HTTP 302
https://dpm.demdex.net/ibs:dpid=423652&dpuuid=C6ADB4D812E1FD46 HTTP 302
https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=423652&dpuuid=C6ADB4D812E1FD46

Request Chain 120

https://yandex.ru/an/mapuid/betweenx/ HTTP 302
https://ads.betweendigital.com/match?bidder_id=161&external_user_id=945FB3D514819142 HTTP 302
https://ads.betweendigital.com/match?bidder_id=161&external_user_id=945FB3D514819142&crf=1&rts=8970510901498620488

Request Chain 121

https://yandex.ru/an/mapuid/blueseaxcom/ HTTP 302
https://im.bluevoox.com/pixel?s1=1&s2=1315&s3=vldyrx2shs82pv9o&cm=1&rd=1&puid=3B6D711804A6FA24

Request Chain 122

https://yandex.ru/an/mapuid/google/?partner-tag=yandex_llc HTTP 302
https://cm.g.doubleclick.net/pixel?google_nid=yandex_llc&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Request Chain 123

https://yandex.ru/an/mapuid/google/?partner-tag=yandexcom HTTP 302
https://cm.g.doubleclick.net/pixel?google_nid=yandexcom&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Request Chain 124

https://yandex.ru/an/mapuid/google/?partner-tag=yandexru HTTP 302
https://cm.g.doubleclick.net/pixel?google_nid=yandexru&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Request Chain 125

https://yandex.ru/an/mapuid/mailweb/ HTTP 302
https://ad.mail.ru/cm.gif?p=155&id=8F4F933B11BFD387

Request Chain 126

https://yandex.ru/an/mapuid/minimobww/ HTTP 302
https://yandex.digital-services.solutions/api/sync?demand=YANV2EU&userid=D34C897EA273B526&expires=1&usergroup=1 HTTP 302
https://x.bidswitch.net/sync?dsp_id=469&user_id=D34C897EA273B526&expires=1&user_group=1 HTTP 302
https://x.bidswitch.net/ul_cb/sync?dsp_id=469&user_id=D34C897EA273B526&expires=1&user_group=1 HTTP 302
https://csync.loopme.me/?partner_id=1196&uid=a137a0e1-92d0-4b99-9bff-ac7904af4d93&vt=&gdpr=&gdpr_consent=&gdpr_pd=&us_privacy=

Request Chain 127

https://yandex.ru/an/mapuid/operacom/ HTTP 302
https://t.adx.opera.com/sync?vendor=60143&uid=3E4913183DD245CE

Request Chain 128

https://yandex.ru/an/mapuid/videonowssp/ HTTP 302
https://sync.dmp.otm-r.com/match/yandex_dsp_new?id=257F0A4CC087D421

Request Chain 129

https://yandex.ru/an/mapuid/xapadsssp/ HTTP 302
https://sync.adkernel.com/user-sync?dsp=94&t=image&uid=AAB5B6E5B633EE63

Request Chain 130

https://cm.tns-counter.ru/yacm HTTP 302
https://an.yandex.ru/mapuid/mediascope/0db5cf7b64fd776b32193c59a9cb4dfc9daea7f04194a96d4614d9810f73a1fa

Request Chain 131

https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F{WEBO_CID} HTTP 307
https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F%7BWEBO_CID%7D&bounce=1&random=1823858371

Request Chain 132

https://dm.hybrid.ai/match?id=182 HTTP 302
https://an.yandex.ru/mapuid/targetixis/4b66d12c422f8f78484e

Request Chain 133

https://dm.hybrid.ai/yandexdmp-match HTTP 302
https://an.yandex.ru/mapuid/dmphybridai/8d677794387ee6b91042?sign=3483204629

Request Chain 134

https://dmg.digitaltarget.ru/1/119/i/i?i=1709539943 HTTP 307
https://dmg.digitaltarget.ru/awg/custom/119/i/i?call_source=awg&ts=1709539948016&i=1709539943 HTTP 307
https://an.yandex.ru/mapuid/dmpamberdata/G8LfKj1dEzDvVgd7iE.G

Request Chain 135

https://dsp.mpartner.digital/dmp/syncsspdmp?sspid=4 HTTP 301
https://an.yandex.ru/mapuid/mediasurferis/TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA

Request Chain 136

https://euw-ice.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fazerionis%2F{PUB_USER_ID} HTTP 302
https://euw-ice.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fazerionis%2F%7BPUB_USER_ID%7D HTTP 302
https://an.yandex.ru/mapuid/azerionis/8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6 HTTP 302
https://match.360yield.com/match?external_user_id=8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6&publisher_dsp_id=429&publisher_call_type=redirect

Request Chain 137

https://exchange.buzzoola.com/cookiesync/redirect/yandex?redirect_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbuzzooladspis%2F%24%7BUUID%7D HTTP 302
https://an.yandex.ru/mapuid/buzzooladspis/e18a247c-a79c-44c9-6b53-dccd426bdf5c

Request Chain 138

https://eye.targetads.io/sync/yandex/ HTTP 302
https://an.yandex.ru/mapuid/targetads/2599623751526948341

Request Chain 139

https://gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=eWFuZGV4X2RzcA==&dspuid=C0F31FE4715E8D69&callback=https%3A%2F%2Fyandex.ru%2Fan%2Fmapuid%2Fyeahmobissp%2F%7Bym_user_id%7D HTTP 302
https://yandex.ru/an/mapuid/yeahmobissp/ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067

Request Chain 140

https://kimberlite.io/rtb/sync/yandex HTTP 307
https://solta-sync.rutarget.ru/sync HTTP 302
https://kimberlite.io/rtb/sync/segmento?u=yjGjSBlc1DPU HTTP 307
https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZeWCbU7axwI HTTP 301
https://vma.mts.ru/match/second?ssp=59&exu=ZeWCbU7axwI HTTP 301
https://tech.rtb.mts.ru/?dsp_uid=4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4&return_url=https%3A%2F%2Fexchange.buzzoola.com%2Fcookiesync%2Fdsp%2Fstream-banner%3Fuid%3D4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4%26url%3Dhttps%253A%252F%252Fvma.mts.ru%252Fem%253Fnext%253D59%2526em%253D4%2526ssp%253Dbuzzoola%2526id%253D%2524%257BUUID%257D

Request Chain 141

https://match.new-programmatic.com/userbind?src=yandex&pbf=1&gi=1 HTTP 302
https://an.yandex.ru/mapuid/targetrtbis/

Request Chain 143

https://nr.bidderstack.com/yandex/cm?user_id={partner_user_id} HTTP 302
https://nr.bidderstack.com/yandex/cm?user_id={partner_user_id}&pupa=1

Request Chain 144

https://profile.ssp.rambler.ru/sync3.302?pid=188 HTTP 302
https://an.yandex.ru/mapuid/ramblerssp/

Request Chain 145

https://px.adhigh.net/p/cm/yandexssp HTTP 302
https://px.adhigh.net/p/cm/yandexssp?bounced=1 HTTP 302
https://an.yandex.ru/mapuid/getintentis/ueN5ar3QG4MI.AikABlGOCIWAUQ

Request Chain 147

https://s.uuidksinc.net/match/501 HTTP 302
https://an.yandex.ru/mapuid/kadamis/llvQCU7m5dZOrJ6TB1Ii

Request Chain 148

https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex HTTP 302
https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex&tc=1

Request Chain 149

https://sm.rtb.mts.ru/p?ssp=yandex&id=map HTTP 301
https://vma.mts.ru/match/second?ssp=55 HTTP 301
https://tech.rtb.mts.ru/?dsp_uid=4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4&return_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fmtsdspis%2F4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4 HTTP 302
https://an.yandex.ru/mapuid/mtsdspis/4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4

Request Chain 150

https://sonar.semantiqo.com/dmp/scr.php HTTP 302
https://counter.yadro.ru/id127/reff-id.gif?sid=901ac8691b1c4efdb51700facc868035 HTTP 302
https://sonar.semantiqo.com/fbfli/data_sess_sync.php?spid=F6EFD1B96E1DAAB8&sid=901ac8691b1c4efdb51700facc868035 HTTP 302
https://cdn3.caltat.com/fbfc504c-89b0-4a80-bef4-c8e39daeee6f/sess.php?sid=901ac8691b1c4efdb51700facc868035&spid=F6EFD1B96E1DAAB8&v= HTTP 302
https://sync.magnitent.com/fbfli/ct_sync.php?ct=d8677ef555a14236a701d8b0d1ad7ed1&sonar=901ac8691b1c4efdb51700facc868035&spid=F6EFD1B96E1DAAB8&v=

Request Chain 156

https://sync.gonet-ads.com/match/yandex?id=[buyerUid] HTTP 302
https://sync.gonet-ads.com/match/yandex?id=%5BbuyerUid%5D&chk=1 HTTP 302
https://an.yandex.ru/mapuid/gonetisnew/NTdmYWZiZWJkMjk3MTI0Mw

189 HTTP transactions
0 data transactions

Method
Protocol Status Resource
Path Size
x-fer Time
Latency Type
MIME-Type IP
Location

GET
H2 200 Primary Request wj7iyhzocihp Show response
atavi.com/share/ 40 KB
12 KB 1386ms
305ms Document
text/html 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx / PHP/7.2.26
Resource Hash: 2cc5cbd7f99b0819daa5ed75c691b87934e73047ede23e5f8a9afc51e4f648d2

Request headers

Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

cache-control: no-store, no-cache, must-revalidate
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 04 Mar 2024 08:12:21 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
process-id: 65e5826584d25
response-file: index.php
response-server: web1.atavi.com
server: nginx
vary: Accept-Encoding
x-powered-by: PHP/7.2.26

GET
H2 200 bookmark.css
atavi.com/c/ 15 KB
15 KB 368ms
366ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/bookmark.css?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: a5904aeeb7a98c1186863ad087bc5d17d3447d8c019e45d225bdd4ebdc1adbbb

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 15079
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 fonts.css
atavi.com/c/ 1 KB
1 KB 167ms
165ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/fonts.css?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 28905d4834470c779c9eeefeafbf1ff5e2865ecc1a36a84335c13b4d69a1a34f

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1088
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 base.min.css
atavi.com/c/yaml/core/ 6 KB
6 KB 166ms
164ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/yaml/core/base.min.css?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: c2002c7965fc719ccf8263bea4367a913d42ac9f60b6880ed5352f4ca928bfec

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 6349
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 base.css
atavi.com/c/ 130 KB
131 KB 367ms
366ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/base.css?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: ccbdd7b4a05915404da8c3d6eb4256e88bef0efc785d1f809cee15b082c454ac

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 133340
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 jquery-1.10.2.min.js Show response
atavi.com/j/jquery/ 91 KB
91 KB 166ms
165ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery-1.10.2.min.js
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 93107
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 jquery-ui-1.10.3.min.js Show response
atavi.com/j/jquery/ 137 KB
137 KB 367ms
366ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery-ui-1.10.3.min.js
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 223746b7c52b2a3b993d9055ad627285f90b2eb0f7717b081d1e7681770b2d03

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 139856
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 toppage-core.js Show response
atavi.com/j/ 94 KB
95 KB 367ms
366ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/toppage-core.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: f5474a7678db72273784b4b51a0ab0f0ecdc356cb29aec1008628dca25cd85aa

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Tue, 23 Jan 2024 16:38:14 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 96490
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 adsbygoogle.js Show response
pagead2.googlesyndication.com/pagead/js/ 147 KB
51 KB 391ms
153ms Script
text/javascript 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4894759983606832

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

3c663297b2f103b6a926e2d736543e99a8af07b45de00ff96d0ee4f64273e5e0

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
content-encoding: br
x-content-type-options: nosniff
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 51279
x-xss-protection: 0
server: cafe
etag: 1568436651188934292
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: private, max-age=3600, stale-while-revalidate=3600
timing-allow-origin: *
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
expires: Mon, 04 Mar 2024 08:12:22 GMT

GET
H2 200 context.js Show response
yandex.ru/ads/system/ 351 KB
101 KB 488ms
171ms Script
text/javascript 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/ads/system/context.js

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

009aff0a2792c2334e778f51167237694a9d390da111b6c07a41433ab742d146

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

content-encoding: br
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539942865382-3909052051238451237-balancer-l7leveler-kubr-yp-vla-13-BAL
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: private, max-age=3600
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Mon, 04 Mar 2024 09:12:22 GMT

GET
H2 200 common.css
atavi.com/themes/default/ 750 B
932 B 367ms
366ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/themes/default/common.css
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: d969760578c3f9389a94f279d7ad165fb1668a51235bbb1b5708ba444de9b29b

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 750
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 bookmark-destroy.jpg
atavi.com/i/d/ 3 KB
3 KB 367ms
366ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/d/bookmark-destroy.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 567b4f6b384245f6c3613364b91b9ba6b3f3ff7c57fed04ba5f835a3b9ce61b1

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:21 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3400
expires: Mon, 11 Mar 2024 08:12:21 GMT

GET
H2 200 125584019.png
rgw.atavi.com/screenshot/preview/ 27 KB
27 KB 1724ms
179ms Image
image/png 51.250.100.50
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://rgw.atavi.com/screenshot/preview/125584019.png?t=3&nc=9ca6c7b22916
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 51.250.100.50 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 27d5d290f707cda9d3f14de1c552b68f9c73bdc22e037c8063ca87868010c31c

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
last-modified: Mon, 04 Mar 2024 06:54:13 GMT
server: nginx
x-amz-meta-s3cmd-attrs: atime:1709535253/ctime:1709535253/gid:0/gname:root/md5:9db367a854ffa986dcca6546ebc048ec/mode:33188/mtime:1709535253/uid:0/uname:root
x-amz-request-id: a586ddf11d7cc572
etag: "9db367a854ffa986dcca6546ebc048ec"
content-type: image/png
cache-control: max-age=432000
accept-ranges: bytes
content-length: 27241
expires: Sat, 09 Mar 2024 08:12:23 GMT

GET
H2 200 48590451.png
rgw.atavi.com/favicon/id/ 19 KB
19 KB 1258ms
297ms Image
image/png 51.250.100.50
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://rgw.atavi.com/favicon/id/48590451.png?t=8
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 51.250.100.50 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7fbe2dba67ef72925aab6821aeee2dae6dfa3c722dd8b1903fb8ecddd3fe67fa

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
last-modified: Tue, 06 Jun 2023 07:57:39 GMT
server: nginx
x-amz-meta-s3cmd-attrs: atime:1686038258/ctime:1686038258/gid:0/gname:root/md5:e536a08ac77f61fe0726eb68a2e31eed/mode:33188/mtime:1686038258/uid:0/uname:root
x-amz-request-id: eaaa1e13b245b363
etag: "e536a08ac77f61fe0726eb68a2e31eed"
content-type: image/png
cache-control: max-age=432000
accept-ranges: bytes
content-length: 19394
expires: Sat, 09 Mar 2024 08:12:23 GMT

GET
H2 200 yandex-share.js Show response
atavi.com/j/vendor/ 53 KB
53 KB 168ms
162ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/vendor/yandex-share.js
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: fbd6e0f29788c13443612b116ace5ee8132ac54413335fde7022a6cea86af309

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 54144
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 dotters.png
atavi.com/i/ 159 B
324 B 172ms
167ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/dotters.png
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 378922ee86255d49b3df846f181b71ab8d915bb29cf13a9539ea45eff346054a

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 159
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 toppage.bookmark.js Show response
atavi.com/j/ 21 KB
22 KB 172ms
167ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/toppage.bookmark.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 1b89dd6c230ae4a9d2f3b2d08c9b95a6346747eff1372d66b5a80ff2d091d821

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 21943
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 template.js Show response
atavi.com/j/vendor/ 1 KB
1 KB 173ms
169ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/vendor/template.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 1f41a596e71734bcf90eb0a2a335f43f68839ffb6efddedd7ff33c9bee48134b

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1175
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.yiiactiveform.js Show response
atavi.com/j/jquery/ 14 KB
14 KB 174ms
169ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.yiiactiveform.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: b6a8839227eab620d15b88e875aeccff7038b65b08aa424ae5275dd4294c4a0d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 14193
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 auth.js Show response
atavi.com/assets/7d7613b1/js/ 1 KB
1 KB 176ms
172ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/assets/7d7613b1/js/auth.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: b7751ca9c2c9bd6304438705985563bddc3702dab628575f0c548f57420b4d8d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Sun, 03 Mar 2024 22:15:12 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1163
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.nanoscroller.min.js Show response
atavi.com/j/jquery/ 9 KB
9 KB 176ms
172ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.nanoscroller.min.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 60af71b9ccc1ab6551157628ef9f006c9b683c7f6050d5b4f1e5b4795cfa5bc2

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 9381
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 helpers.js Show response
atavi.com/j/ 5 KB
5 KB 215ms
211ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/helpers.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 2892279cfe4c52257d426e104bcae2757be87a04a6cc91d6df51b8a947e5f3f0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 4764
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.cookie.min.js Show response
atavi.com/j/jquery/ 1 KB
1 KB 162ms
158ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.cookie.min.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 487e30bd63092805216e4b4789f5045d2e0efc44c29f4f90f569454b79f4e922

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1254
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.form.js Show response
atavi.com/j/jquery/ 39 KB
39 KB 224ms
220ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.form.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: c8c2a9e47aad08f8265f73916b9b12445d32684b5f7a2996da2f2d30bc4b73a3

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 39525
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.placeholderpatch.js Show response
atavi.com/j/jquery/ 3 KB
3 KB 227ms
224ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.placeholderpatch.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 3e2615579090a0b41d9ab75d78d9350059e38c8612f97ecb490c29c0bcdbe04d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3099
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.pnotify.min.js Show response
atavi.com/j/jquery/ 17 KB
17 KB 234ms
230ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.pnotify.min.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: a6d6823654a1031b1a0baaf798b1c8bdbabab1c158c257f16564f0ed549d0878

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 16966
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.icheck.min.js Show response
atavi.com/j/jquery/ 5 KB
5 KB 234ms
231ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.icheck.min.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: f0718dd44766296547e2153766bdc56d31e8aac51c7ed78b6499d59aa0ffac2f

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 4931
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 toppage.assistant.js Show response
atavi.com/j/ 8 KB
8 KB 234ms
231ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/toppage.assistant.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 6612f8ec58cc461973c5a7279ca76a8b55c746410e178fc46c043db89219f129

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 8336
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.liteuploader.js Show response
atavi.com/j/jquery/ 5 KB
5 KB 218ms
215ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.liteuploader.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 99a214aafb21a08d2f7c47f092788e1b6600463613c523c8f46c55503bb54c74

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 5232
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 jquery.colorpicker.js Show response
atavi.com/j/jquery/ 13 KB
14 KB 234ms
231ms Script
application/javascript 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/j/jquery/jquery.colorpicker.js?v=9bc90c112
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 2267670d86d673ca44120ca5db267de4b9b004ab455a2db9253ad2f65d1e5b47

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: application/javascript
cache-control: max-age=604800
accept-ranges: bytes
content-length: 13772
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 textbook.css
atavi.com/c/ 401 B
583 B 199ms
199ms Stylesheet
text/css 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/textbook.css
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: ca2629651dba37ed6e7d44a6d6cf53d7a4fe98c41b3d2b402c66a2777f67530d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
vary: Accept-Encoding
content-type: text/css
cache-control: max-age=604800
accept-ranges: bytes
content-length: 401
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 gtm.js Show response
www.googletagmanager.com/ 127 KB
48 KB 372ms
133ms Script
application/javascript 142.250.186.136
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://www.googletagmanager.com/gtm.js?id=GTM-KN9BKQH

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.186.136 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s07-in-f8.1e100.net

Software

Google Tag Manager /

Resource Hash

f6693ae397b51fda615a4318f069f535c6f6cf361cb3413d473ebdfb79dccb0e

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000; includeSubDomains
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 48765
x-xss-protection: 0
last-modified: Mon, 04 Mar 2024 06:00:00 GMT
server: Google Tag Manager
vary: Accept-Encoding
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: private, max-age=900
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
expires: Mon, 04 Mar 2024 08:12:22 GMT

GET
H2 200 logocom.png
atavi.com/i/ 2 KB
2 KB 214ms
211ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/logocom.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 6c0d1f407804f5789a4acaa34b7d83ac75b6805a5e145d54687fb62411e86d67

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1904
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 hider.png
atavi.com/i/d/ 166 B
331 B 218ms
215ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/d/hider.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/bookmark.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 32162c03d58a6316f1248b63e993ed09122df4fdaccdf086f6c63a072b6f3943

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/bookmark.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 166
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 OpenSans-Semibold-cyrillic.woff
atavi.com/c/fonts/ 40 KB
41 KB 160ms
158ms Font
font/woff 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/fonts/OpenSans-Semibold-cyrillic.woff
Requested by: Host: atavi.com
URL: https://atavi.com/c/fonts.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: dc2a827bf26527ac0a2ed471616e4b8e674b45a4c75ed364aaa9c598921a12fc

Request headers

Referer: https://atavi.com/c/fonts.css?v=9bc90c112
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: font/woff
cache-control: max-age=604800
accept-ranges: bytes
content-length: 41308
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 OpenSans-Regular-cyrillic.woff
atavi.com/c/fonts/ 40 KB
40 KB 214ms
212ms Font
font/woff 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/fonts/OpenSans-Regular-cyrillic.woff
Requested by: Host: atavi.com
URL: https://atavi.com/c/fonts.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 3103ab885aabd4391b88cde2d09e4b37ad749f7ba007f972fa976933569a09ed

Request headers

Referer: https://atavi.com/c/fonts.css?v=9bc90c112
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: font/woff
cache-control: max-age=604800
accept-ranges: bytes
content-length: 40640
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 watch.js Show response
mc.yandex.ru/metrika/ 172 KB
61 KB 568ms
257ms Script
application/javascript 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/metrika/watch.js

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

dd332366bf0a516d32514fd7c6f8da1257947095eb73d0b3808f6ef86b27098d

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=31536000
last-modified: Fri, 01 Mar 2024 11:37:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
etag: "65e1be04-f0d6"
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=3600
timing-allow-origin: *
content-length: 61654
expires: Mon, 04 Mar 2024 09:12:23 GMT

GET
H2 200 analytics.js Show response
www.google-analytics.com/ 52 KB
21 KB 342ms
111ms Script
text/javascript 142.250.185.174
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://www.google-analytics.com/analytics.js

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.185.174 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s51-in-f14.1e100.net

Software

Golfe2 /

Resource Hash

de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

Security Headers

Name	Value
Strict-Transport-Security	max-age=10886400; includeSubDomains; preload
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security: max-age=10886400; includeSubDomains; preload
content-encoding: gzip
x-content-type-options: nosniff
date: Mon, 04 Mar 2024 07:32:03 GMT
last-modified: Tue, 12 Dec 2023 18:09:08 GMT
server: Golfe2
age: 2419
vary: Accept-Encoding
content-type: text/javascript
cache-control: public, max-age=7200
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 20994
expires: Mon, 04 Mar 2024 09:32:03 GMT

GET
H2 200 code.js Show response
top-fwz1.mail.ru/js/ 44 KB
19 KB 470ms
153ms Script
application/javascript 95.163.52.67
VK-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://top-fwz1.mail.ru/js/code.js

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

95.163.52.67 , Russian Federation, ASN47764 (VK-AS, RU),

Reverse DNS

top-fwz1.mail.ru

Software

nginx /

Resource Hash

384d11b1b10a5836bf06f7b8f893cb49986aaa44d296510c250e72808af39874

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: gzip
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
amp-access-control-allow-source-origin: *
last-modified: Mon, 19 Feb 2024 10:38:19 GMT
server: nginx
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
etag: W/"65d32f9b-b0f2"
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
content-type: application/javascript
access-control-allow-origin: *
accept-ch-lifetime: 86400
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
cache-control: max-age=3600, private
access-control-allow-credentials: true
timing-allow-origin: *
access-control-allow-headers: *
expires: Mon, 04 Mar 2024 09:12:23 GMT

GET
H2 200 fbevents.js Show response
connect.facebook.net/en_US/ 215 KB
58 KB 338ms
109ms Script
application/x-javascript 157.240.0.6
FACEBOOK

General

Check archive.org

Show headers Download Go to

Full URL

https://connect.facebook.net/en_US/fbevents.js

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

157.240.0.6 Frankfurt am Main, Germany, ASN32934 (FACEBOOK, US),

Reverse DNS

xx-fbcdn-shv-02-fra3.fbcdn.net

Software

Resource Hash

50b6e67cfcfe4ac8fe9cee705b681f696065306ee42bcd4e6b37a17dba333ac5

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data: blob: facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
Strict-Transport-Security	max-age=31536000; preload; includeSubDomains
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

permissions-policy-report-only: clipboard-read=(), clipboard-write=(), picture-in-picture=();report-to="permissions_policy"
content-security-policy: default-src 'self' data: blob: facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; preload; includeSubDomains
date: Mon, 04 Mar 2024 08:12:22 GMT
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=86400
content-length: 57348
x-xss-protection: 0
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", coep_report="https://www.facebook.com/browser_reporting/coep/?minimize=0", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/"
pragma: public
x-fb-debug: wY4R7eCK0rRUmUbCkcBRvQI4HxwyC82s4drIaSmhCPYlC+phU5X/6o9KalGaz0I+LVojZRzhMAv/8UBI13oJrg==
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop_report"
vary: Accept-Encoding
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coep\/?minimize=0"}],"group":"coep_report"}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-type: application/x-javascript; charset=utf-8
x-frame-options: DENY
cache-control: public, max-age=1200
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), bluetooth=(), camera=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
timing-allow-origin: *
expires: Sat, 01 Jan 2000 00:00:00 GMT

GET
H/1.1

200
OK

hit
counter.yadro.ru/
Redirect Chain

https://counter.yadro.ru/hit?r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392
https://counter.yadro.ru/hit?q;r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392

43 B
528 B

154ms
154ms

Image
image/gif

88.212.201.198
UNITEDNET

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://counter.yadro.ru/hit?q;r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Server

88.212.201.198 , Russian Federation, ASN39134 (UNITEDNET, RU),

Reverse DNS

host198.rax.ru

Software

nginx/1.17.9 /

Resource Hash

2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

Security Headers

Name	Value
Strict-Transport-Security	max-age=86400

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Pragma: no-cache
Date: Mon, 04 Mar 2024 08:12:23 GMT
Strict-Transport-Security: max-age=86400
Server: nginx/1.17.9
Content-Type: image/gif
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Access-Control-Allow-Origin: *
Cache-control: no-cache
Connection: keep-alive
Content-Length: 43
Expires: Sat, 04 Mar 2023 21:00:00 GMT

Redirect headers

Pragma: no-cache
Date: Mon, 04 Mar 2024 08:12:23 GMT
Strict-Transport-Security: max-age=86400
Server: nginx/1.17.9
Content-Type: text/html
Location: https://counter.yadro.ru/hit?q;r;s1600*1200*24;uhttps%3A//atavi.com/share/wj7iyhzocihp;0.01040848878760392
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Cache-control: no-cache
Connection: keep-alive
Content-Length: 32
Expires: Sat, 04 Mar 2023 21:00:00 GMT

GET
H2 200 rtrg
vk.com/ 49 B
672 B 468ms
161ms Image
image/gif 87.240.137.164
VKONTAKTE-SPB-AS ...

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://vk.com/rtrg?r=Ms5etYn5L8gGw9Z20a*1*TCC2SL7WBqwqiVGIUAgtZz8YmN/2n6KdoldtpnH4uZ8hnIcdo6FFrbfOu8zlZnGu/B*cBa1/CKMNZWAkuuZk1WW1cRKj7VDcZRAy/NPLHswCYlxmvI8MCxoPbrimTtQ/FgeHCN85ITMEZwyRQ4QwpE-

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.240.137.164 , Russian Federation, ASN47541 (VKONTAKTE-SPB-AS vk.com, RU),

Reverse DNS

srv164-137-240-87.vk.com

Software

kittenx / KPHP/7.4.116077

Resource Hash

2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

Security Headers

Name	Value
Strict-Transport-Security	max-age=15768000

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

x-trace-id: g04iWqvyu-9nfU04PYqY5WBIa3QtQw
date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: gzip
x-frontend: front656102
strict-transport-security: max-age=15768000
server: kittenx
x-powered-by: KPHP/7.4.116077
content-type: image/gif
access-control-expose-headers: X-Frontend
cache-control: no-store
content-length: 65
reporting-endpoints: default="https://vk.com/browser_reports?dest=default_reports"

GET
H2 200 icons.png
atavi.com/i/ 11 KB
12 KB 163ms
157ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/icons.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 49d90bbe0ab280f206ded7a6fb456809d6f610539a7928714b95b0c194f238a9

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 11609
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 import.png
atavi.com/i/ 1001 B
1 KB 163ms
158ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/import.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 8e99172d139898393ebe8f6ef78e420c8b12b414533cce4244c10755a10fba95

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1001
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/default/ 335 B
501 B 163ms
158ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/default/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 697a2065a338f553e2fa5994aee7e67ac09e49ed8971b235fdea54b12022d3a5

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 335
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 theme-active.png
atavi.com/i/d/ 315 B
480 B 163ms
157ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/d/theme-active.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 852d4a8235a3b85476d4b7f0e319fc5cfad02614e23a443bd5f69ca476c4153a

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 315
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/whitebrick/ 919 B
1 KB 166ms
160ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/whitebrick/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7b19edefbf879d92591e64104ea5e18cf6b8e61269eeee86711a7a4a4215f594

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:59 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 919
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/flower/ 2 KB
2 KB 166ms
161ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/flower/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7bf16516dd6bcf130ba845101a267d256041601c7c282a1661d6b9b45ad55cd7

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1733
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/dandelion/ 2 KB
2 KB 166ms
160ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/dandelion/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 1df6ce9d99f648652e5a67375bc4a5a8af316020de24418fd7abbcf69b91c686

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1875
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/avto/ 1 KB
2 KB 166ms
161ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/avto/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: b39cba7118acbe2405c14a5825309333ab20f9a3ff270c5f898b124f21dabd4f

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1406
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/sand/ 1011 B
1 KB 167ms
161ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/sand/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: d18ed215d3ccd9fa310826fc0b3254a5d01ed3701eabfed1597c730adcf8820d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1011
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/fern/ 3 KB
3 KB 168ms
163ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/fern/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: f973085625a8d8ee359c96895c2be877c61f9e16b0e0188c3dd3bbf929ba5010

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3344
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/clouds/ 2 KB
2 KB 168ms
163ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/clouds/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: ec37c3f038ac141484289ff618c4d963bba2e30bda5956496d4b3fcf694dec1c

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1539
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/clay/ 4 KB
4 KB 167ms
162ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/clay/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7485b2218900d0b476edbb6a452b96dcdd1218adfcee4728bc4c3a4dd6009f15

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3998
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/beach/ 4 KB
4 KB 169ms
165ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/beach/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 0e7bfed949774df084cd59cf7da93d1e603b2b4605e2eb92bc76723a3198b17e

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 4165
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/ocean/ 4 KB
4 KB 169ms
164ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/ocean/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: e3683c0757443cb11cf81be7ed83bda432731644d4266fe2cbaa10075c4919ac

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3971
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/cosmos/ 3 KB
3 KB 212ms
208ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/cosmos/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 2d4551ad1768fbfc4e66dcac0cd800d9ba3e860dfda6b6916372a5b4ebc81dcb

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3032
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/planet/ 3 KB
4 KB 167ms
164ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/planet/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: b7b916f691219386a96880bb23293121bb78a2972629f0241dc699feef78afff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3442
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 prev.jpg
atavi.com/themes/snowboard/ 3 KB
3 KB 167ms
163ms Image
image/jpeg 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/themes/snowboard/prev.jpg
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7deb67cfde8f703bda80080b6e53df5545315685c6ded3b1ca3de608ef46357d

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/share/wj7iyhzocihp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/jpeg
cache-control: max-age=604800
accept-ranges: bytes
content-length: 3211
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 theme-expand.png
atavi.com/i/ 2 KB
2 KB 167ms
164ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/theme-expand.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: cbbaa7afe142b9837eb82be0f827afd8e45c359dcb6980bd6026c4f01121f9b9

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1548
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 mobile.png
atavi.com/i/ 239 B
404 B 212ms
209ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/mobile.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 7cc2482b0e5c7a7c651b3b45ce9cd89c37e2389ee42afe1c4f792934cf74ae42

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 239
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 shadow-menu.png
atavi.com/i/ 1 KB
1 KB 260ms
257ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/shadow-menu.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 773de49f23ed3e81ce6bad402f9237923592516cc5e8c1a6de22c30ba9c3c957

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 1060
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 OpenSans-Bold-cyrillic.woff
atavi.com/c/fonts/ 39 KB
40 KB 160ms
158ms Font
font/woff 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/c/fonts/OpenSans-Bold-cyrillic.woff
Requested by: Host: atavi.com
URL: https://atavi.com/c/fonts.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: 4c0fdc527906c0eb713551bd8013a15b18a0fde8dc3b8d67d950ea0786403761

Request headers

Referer: https://atavi.com/c/fonts.css?v=9bc90c112
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: font/woff
cache-control: max-age=604800
accept-ranges: bytes
content-length: 40316
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H2 200 sprite-soc.png
atavi.com/i/ 7 KB
7 KB 159ms
159ms Image
image/png 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://atavi.com/i/sprite-soc.png
Requested by: Host: atavi.com
URL: https://atavi.com/c/base.css?v=9bc90c112
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx /
Resource Hash: f1187adbb1d1414715af6aeb981c4be1dff66dd78ae080c353e0748b7f384cbb

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/c/base.css?v=9bc90c112
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:22 GMT
last-modified: Fri, 03 Dec 2021 15:25:58 GMT
server: nginx
content-type: image/png
cache-control: max-age=604800
accept-ranges: bytes
content-length: 7078
expires: Mon, 11 Mar 2024 08:12:22 GMT

GET
H3 200 show_ads_impl_fy2021.js Show response
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/ 406 KB
138 KB 385ms
164ms Script
text/javascript 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/show_ads_impl_fy2021.js

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4894759983606832

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

108e1b56c714d559532789f9be807635f6eda8db20a7d23c19265271ddbef838

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
x-content-type-options: nosniff
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 140897
x-xss-protection: 0
server: cafe
etag: 13858312759212068387
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cache-control: private, max-age=1209600
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:23 GMT

GET
H2 200 zrt_lookup_nohtml_fy2021.html Show response
googleads.g.doubleclick.net/pagead/html/r20240228/r20190131/ Frame 82E3 9 KB
4 KB 350ms
109ms Document
text/html 172.217.18.2
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://googleads.g.doubleclick.net/pagead/html/r20240228/r20190131/zrt_lookup_nohtml_fy2021.html

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4894759983606832

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.2 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s28-in-f2.1e100.net

Software

cafe /

Resource Hash

df7a397b8ce58f6251a395e02608b4f620e934a958bdfe6702c6f2033593eed0

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

age: 15413
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control: public, max-age=1209600
content-encoding: br
content-length: 4155
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
date: Mon, 04 Mar 2024 03:55:30 GMT
etag: 5035419970550746386
expires: Mon, 18 Mar 2024 03:55:30 GMT
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server: cafe
timing-allow-origin: *
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 0

POST
H2 200 collect Show response
www.google-analytics.com/j/ 15 B
216 B 118ms
117ms XHR
text/plain 142.250.185.174
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://www.google-analytics.com/j/collect?v=1&_v=j101&a=553673364&t=pageview&_s=1&dl=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&ul=en-us&de=UTF-8&dt=Atavi%20-%20bookmark%20manager&sd=24-bit&sr=1600x1200&vp=1600x1200&je=0&_u=IGBAgEABAAAAACAAI~&jid=2099745663&gjid=2145399019&cid=858364001.1709539943&tid=UA-63183114-1&_gid=1480569227.1709539943&_slc=1&z=1485074723

Requested by

Host: www.google-analytics.com
URL: https://www.google-analytics.com/analytics.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.185.174 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s51-in-f14.1e100.net

Software

Golfe2 /

Resource Hash

2217f27341e0f760dc5e2147ea59086037f8d064d46ce251b07a5c79d325dbde

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
last-modified: Sun, 17 May 1998 03:00:00 GMT
server: Golfe2
content-type: text/plain
access-control-allow-origin: https://atavi.com
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 15
expires: Fri, 01 Jan 1990 00:00:00 GMT

POST
H2 200 collect Show response
stats.g.doubleclick.net/j/ 7 B
347 B 372ms
108ms XHR
text/plain 64.233.184.156
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j101&tid=UA-63183114-1&cid=858364001.1709539943&jid=2099745663&gjid=2145399019&_gid=1480569227.1709539943&_u=IGBAgEABAAAAAGAAI~&z=1991866088

Requested by

Host: www.google-analytics.com
URL: https://www.google-analytics.com/analytics.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

64.233.184.156 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

wa-in-f156.1e100.net

Software

Golfe2 /

Resource Hash

fda80d24f1bfe5a68b5f719a1febecfe747c79720e3a26b4b78b6a42b67b37b7

Security Headers

Name	Value
Strict-Transport-Security	max-age=10886400; includeSubDomains; preload
X-Content-Type-Options	nosniff

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

pragma: no-cache
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
last-modified: Sun, 17 May 1998 03:00:00 GMT
server: Golfe2
content-type: text/plain
access-control-allow-origin: https://atavi.com
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 7
expires: Fri, 01 Jan 1990 00:00:00 GMT

GET
H2 200 380640435658761 Show response
connect.facebook.net/signals/config/ 48 KB
11 KB 151ms
150ms Script
application/x-javascript 157.240.0.6
FACEBOOK

General

Check archive.org

Show headers Download Go to

Full URL

https://connect.facebook.net/signals/config/380640435658761?v=2.9.148&r=stable&domain=atavi.com&hme=20c913bdcd4be51a752120153aa5caaecb3ee86c7f26cf737846e40b202aba68&ex_m=62%2C106%2C94%2C98%2C53%2C3%2C88%2C61%2C14%2C86%2C79%2C44%2C46%2C150%2C153%2C164%2C160%2C161%2C163%2C25%2C89%2C45%2C68%2C162%2C145%2C148%2C157%2C158%2C165%2C115%2C13%2C43%2C169%2C168%2C117%2C16%2C29%2C32%2C1%2C36%2C57%2C58%2C59%2C63%2C83%2C15%2C12%2C85%2C82%2C81%2C95%2C97%2C31%2C96%2C26%2C22%2C146%2C149%2C124%2C24%2C9%2C10%2C11%2C5%2C6%2C21%2C19%2C20%2C49%2C54%2C56%2C66%2C90%2C23%2C67%2C8%2C7%2C71%2C41%2C18%2C92%2C91%2C17%2C4%2C73%2C80%2C72%2C78%2C40%2C39%2C77%2C33%2C35%2C76%2C48%2C74%2C28%2C37%2C65%2C0%2C84%2C75%2C2%2C30%2C55%2C34%2C93%2C38%2C70%2C60%2C99%2C52%2C51%2C27%2C87%2C50%2C47%2C42%2C69%2C64%2C100

Requested by

Host: connect.facebook.net
URL: https://connect.facebook.net/en_US/fbevents.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

157.240.0.6 Frankfurt am Main, Germany, ASN32934 (FACEBOOK, US),

Reverse DNS

xx-fbcdn-shv-02-fra3.fbcdn.net

Software

Resource Hash

0b6e56545841d71f7254f20d1de9212b9599f264c7b54421fad3129315b02828

Security Headers

Name	Value
Content-Security-Policy	default-src 'self' data: blob: ;script-src .facebook.com .fbcdn.net .facebook.net .google-analytics.com .google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' ;connect-src .facebook.com facebook.com .fbcdn.net .facebook.net wss://.facebook.com: wss://.whatsapp.com: wss://.fbcdn.net attachment.fbsbx.com ws://localhost: blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
Strict-Transport-Security	max-age=31536000; preload; includeSubDomains
X-Content-Type-Options	nosniff
X-Frame-Options	DENY
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

permissions-policy-report-only: clipboard-read=(), clipboard-write=(), picture-in-picture=();report-to="permissions_policy"
content-security-policy: default-src 'self' data: blob: *;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
content-encoding: gzip
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; preload; includeSubDomains
date: Mon, 04 Mar 2024 08:12:23 GMT
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=86400
x-xss-protection: 0
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", coep_report="https://www.facebook.com/browser_reporting/coep/?minimize=0", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/"
pragma: public
x-fb-debug: pgiOkytOZ0Dj2P6OfzPCR2eSGSQfdza0WOm9wUZfsb+8MHNvLlB0Uknl9P/2tHD4l8SejDv6XaxKsOwQFvcpJQ==
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop_report"
vary: Accept-Encoding
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coep\/?minimize=0"}],"group":"coep_report"}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-type: application/x-javascript; charset=utf-8
x-frame-options: DENY
cache-control: public, max-age=1200
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), bluetooth=(), camera=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
timing-allow-origin: *
expires: Sat, 01 Jan 2000 00:00:00 GMT

GET
H2 200 dyn-goal-config.js Show response
top-fwz1.mail.ru/js/ 3 KB
2 KB 154ms
153ms Script
application/javascript 95.163.52.67
VK-AS

General

Check archive.org

Show headers Download Go to

Full URL

https://top-fwz1.mail.ru/js/dyn-goal-config.js?ids=2774878

Requested by

Host: top-fwz1.mail.ru
URL: https://top-fwz1.mail.ru/js/code.js

Protocol

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

95.163.52.67 , Russian Federation, ASN47764 (VK-AS, RU),

Reverse DNS

top-fwz1.mail.ru

Software

nginx /

Resource Hash

90d4798cfeacb30022d6f8efb927da957733d8302ed75b0691a9c4afc8d9f15d

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: gzip
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
amp-access-control-allow-source-origin: *
server: nginx
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
accept-ch-lifetime: 86400
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
cache-control: max-age=600, private
access-control-allow-credentials: true
timing-allow-origin: *
access-control-allow-headers: *
expires: Mon, 04 Mar 2024 08:22:23 GMT

GET
H2 200 counter
top-fwz1.mail.ru/ 43 B
1 KB 155ms
154ms Image
image/gif 95.163.52.67
VK-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://top-fwz1.mail.ru/counter?_=0.09429278679426645;id=2774878;u=https%3A//atavi.com/share/wj7iyhzocihp;st=1709539942750;title=Atavi%20-%20bookmark%20manager;s=1600*1200;vp=1600*1200;touch=0;hds=1;sid=a6a9fbe932520084;ver=60.4.0;tz=-120%2FAsia%2FJerusalem;ct=2833/2838/2838/;gl=u;ni=9.3//4g/0/0/;lvid=1709539943226%3A1709539943242%3A1%3A4879eda9f408f75509e38d4b56979a97;opts=dl%2Cjst-gtag-ga;visible=true;js=13

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

95.163.52.67 , Russian Federation, ASN47764 (VK-AS, RU),

Reverse DNS

top-fwz1.mail.ru

Software

nginx /

Resource Hash

24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
content-length: 43
pragma: no-cache
amp-access-control-allow-source-origin: *
server: nginx
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
content-type: image/gif
access-control-allow-origin: *
accept-ch-lifetime: 86400
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
cache-control: private, no-cache, no-store, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
access-control-allow-headers: *

GET
H2 200 text-variable-full.woff2
yastatic.net/s3/home/fonts/ys/3/ 25 KB
26 KB 465ms
168ms Font
font/woff2 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 26004
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
server: nginx/1.17.9
etag: "7f0cdaf91230f9789ca4162aedff612e"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: font/woff2
access-control-allow-origin: *
cache-control: public, max-age=31556952
x-nginx-request-id: 5c877b1523e779a1
accept-ranges: bytes
timing-allow-origin: *
expires: Tue, 04 Mar 2025 13:57:36 GMT

GET
H2 200 d4b12dee61dffe2de6b1.js Show response
yastatic.net/partner-code-bundles/977331/ 60 KB
15 KB 488ms
220ms Script
text/javascript 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/partner-code-bundles/977331/d4b12dee61dffe2de6b1.js

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

dae95bd91801800cb137c6e6d898fc0d64caf2d0c872d714aeffe20ce153e10e

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 15012
last-modified: Thu, 29 Feb 2024 15:39:26 GMT
server: nginx/1.17.9
etag: "2f606b56b351357170c054f5d4e5f4b6"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=946708560
accept-ranges: bytes
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Wed, 04 Mar 2054 14:44:35 GMT

GET
H2 200 ee0fd02cb631a49dfd7b.js Show response
yastatic.net/partner-code-bundles/977331/ 24 KB
8 KB 498ms
230ms Script
text/javascript 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/partner-code-bundles/977331/ee0fd02cb631a49dfd7b.js

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

9421314a12ada582ce8f617be405a90c8de4bb790cce325db20ab10f31e7642e

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 7952
last-modified: Thu, 29 Feb 2024 15:39:26 GMT
server: nginx/1.17.9
etag: "024e01be042f8755234cf0eec2059061"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=946708560
accept-ranges: bytes
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Wed, 04 Mar 2054 14:44:35 GMT

GET
H2 200 ccf08994f2763a3c56ad.js Show response
yastatic.net/partner-code-bundles/977331/ 609 KB
109 KB 514ms
246ms Script
text/javascript 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/partner-code-bundles/977331/ccf08994f2763a3c56ad.js

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

470ad364383b4c70195100c1d49e977b6a0a288df461929817e4676dce8d8430

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 110568
last-modified: Thu, 29 Feb 2024 15:39:26 GMT
server: nginx/1.17.9
etag: "f7acd53fd522783d038a7706311b66e9"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=946708560
accept-ranges: bytes
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Wed, 04 Mar 2054 14:44:32 GMT

GET
H2 200 host.js Show response
yastatic.net/safeframe-bundles/0.83/ 33 KB
9 KB 580ms
312ms Script
text/javascript 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/safeframe-bundles/0.83/host.js

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

34806ef573086241dd1a596a860b0295b51c24f1c37eab36eb9d0665683abb55

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 8878
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
server: nginx/1.17.9
etag: "f80882bf67cf261aa08d636da095149a"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=946708560
accept-ranges: bytes
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Wed, 04 Mar 2054 14:44:27 GMT

GET
H2 200 35486693970471ec089d.js Show response
yastatic.net/partner-code-bundles/977331/ 125 KB
25 KB 580ms
313ms Script
text/javascript 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/partner-code-bundles/977331/35486693970471ec089d.js

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

51ea9779c70bf1d0c9dbe3e4c28f3c9c8ed2c08254e5e6a174ee823138430b48

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Origin: https://atavi.com
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=43200000; includeSubDomains;
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
content-length: 24868
last-modified: Thu, 29 Feb 2024 15:39:25 GMT
server: nginx/1.17.9
etag: "5a3bd2e8c63570d9e6ffd8de153af9fc"
vary: Accept-Encoding
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=946708560
accept-ranges: bytes
timing-allow-origin: *
x-robots-tag: noindex, noarchive, nofollow
expires: Wed, 04 Mar 2054 14:44:32 GMT

GET
H2 200 4317461 Show response
yandex.ru/ads/meta/ 238 KB
56 KB 375ms
374ms XHR
application/json 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/ads/meta/4317461?target-ref=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&pcode-test-ids=968602%2C0%2C20%3B966417%2C0%2C23%3B977092%2C0%2C75%3B976896%2C0%2C26%3B977348%2C0%2C75%3B967989%2C0%2C26%3B968861%2C0%2C22%3B974087%2C0%2C68%3B968983%2C0%2C62%3B967983%2C0%2C56%3B971828%2C0%2C22%3B892905%2C0%2C27%3B975342%2C0%2C59%3B973439%2C0%2C62%3B974975%2C0%2C55%3B962577%2C0%2C3%3B977331%2C0%2C30&pcode-flags-map=eJy1WWlz2zgS%2FS%2F%2BHGV4H%2FMNIkEJK14Lgj4mNYVSYlXWsz6mbCczm1T%2B%2B3YDICVSXijOzOaDI1HCA9DH69etr2fnpJPdurmQJJclWdJSFg2XrJZLUteUn%2F387uvZ5%2B3tp93Zz2eC9%2FTszdnz7umZXcP7KPL9ID779uubPUzLm7zPRCebWrak76gVIXbTwNcIOevIsqQya%2FpaSE5zxmkm4CSkbe0YnhME3ngK2FJWfSkYb8oS0GqBLyiXF0Rka5pLwSoqm6LoqLDj%2Bp4T72%2FHqeBXeKuaiouGbyTlvLHbJw6jIE5HBNg924CRr5peyK5s4A%2F7hcolXDgnnNHODhYnbuAqMLwBYrScqkvur3vOctpI8%2FkEznXg3wQv9dPYOYG37IsCTEerVlzJklVsDvpqxPOWsPzvP2HRw%2BsfRa0xVv%2Fmk%2F4PzL%2Fkn5cx%2F38W%2BFHvY7CvOFnKktYrsZ4sgmRNDpclTuLEwbiM1ooEBCeQKues60mpeQVZiV4Kymt4knd2SkhcL3J%2BAFQ96EhBZcFJZacutYemB86RZzr4BhAWbCiQTFuCEIDdKVTS56yRGadEsPMTqZ4EjueG4%2FEHJ4kGSKgThAukoYJx2Chb9%2FVGFoSVE8Rw6vEk8GJvD0iEQJ92r0H0bYBwV2DdrGQUqLukK7Amq4tGXqyZYvT6nMIWOvjRPiduHzpJcsC7dQ5BSJZoApIjEuvgQc9LPPQFXTanrBk7wZ6FVxTu2HeiqeR5RdrRuuek7Kcej2Z5k0ShH%2B0LDc0AIhNEB01FytJ%2BjDgJguB4tVopL5hYSwGx%2BBqMwXdVL6CugTGOS1I4WZ56rhOp5R1YVZqSm2O4iquWYtlvmwvKaVGwDJyZXU3Adn%2F%2BPoWbpC7J8yHTWrKCEtsKBlmhEwFDTZm7ZPXGfsc0TU2dG8p5TZU8GZIHXW87V%2Bo6oAkUQps1Of2LGB3wAlBH3ZUEzQx%2Ba0kNNwM4O0ISJd6IoGgBD3JFIJ4vJamtiz03cvdkWjAIkbZfliyTpAPh0r2OD1M%2FSLxoL9R6fk6v1GnWV%2B0anCbsXJeGISTlfL3Jogtagk2o7MC2tLbjxE4U7zMI0g5Ik0J0GESQQRsp1nRGvXPjgGd8f38aoWIOiKEDr0wWpnHge%2FF0bZQYSVY1S2SnLt%2Bo2qmPr4icIeGoMkDgdPajxKnJqEG%2FGt2addy2MExdyGV9Dqy3Wm3LvmYFgyBjNXi2IJnVDmGaeEagYnRD1gIhrGXZrFhmWxe5iR8Fk0NDKHDI2VoYkXpgkG4WW0dgqWsoKUMia%2BqBsAu4gmSqkMKZSE6t6RLFSRppx2BcFqCH67y80oUYiWneBtjXLzdKXOs80YWHoXOrZWNHSQNT1BGlpEAZgFBZ10RJEGnCOjDbioN4zGm3EY393EkUuP6h%2FRSJQ%2BkEkAO8GtoFiM2CrXrojUCaYY%2BUUaAyq1lj1wnicFApOkxEz2vjHijZGWYcb%2FrV2pq6sesOVRQqFhSdf%2Fa0p0BBrVyWqKtKNq3r787utje3bx8%2FAcp%2FtvfXuz%2Fh9U83d9uPu6fJo4%2FbO%2FXk%2BsvuXn99%2B%2Fnm%2BUG%2FvHt78Ob6%2FsY8ReQRAR48br%2FcPnz5l%2Fn4y6P%2B%2F9Pj9u397o%2Bnoy%2F8tn24u1FLf51cMYSE0vmki0RF%2BQr%2F5oxIQVad1dK%2B55kwUAFMwUvAHpkqgvaFoe%2BYQgHaJKcFAUbQNbTuqyW1Ekkcur6R3ardVg0zVl%2Fo4GmmcwckL4MsPwETO%2BFYrUheIY%2BsFDmwvCAvuPc62Llx5LxfbLe7cBHs3ruL7Xs3Xuyu010YXvsf3PD91L5JGKamikwy8jDORdNnax3tZdOpe2iRw%2Bk%2FgFdPRDskU6Cl4xXUW3Biph2xLBsIUchIUKSCvnAZvmALL0hdaE8WLkAevvdm7%2F3Z%2B0C9JwsvhFYr9sx6sggTJIaF644PIgixGDc4NEvipJGra0jBQBjkpFXBp4cD%2FcoqwVwozMFBVqK6ZRWGDrpRh7EVIHSDVAMUHbi8gR6IXdpX%2BL4hLJMlEOPYUSFPEtVI4NAFtAkkTt3boYLUiKw14bnSahqlgzQQJFtbV0PGRdFY%2FlatQAnCWnFqUTqtfaZfybADQiU%2FrXfv0hR5IfbepHDxwPGjN5GfAqn64cSJie%2F4ox0N7w8CW0LQyYqgugbP2CW16yTpiRRRLVCGsq9RiYLCm7PVGl6BqC9pIb5PvMBmkecaA%2FYcjYCRYyUrXJP4I0%2BYCFjp1EWfK3lqlUyOExotabqFoT9sWgDhYgn1mkioVsUsRwdPANrgi0kipY4Xpe54Np0GyyvJ4ZCNGUiukM4mN3znQxvvOukUCaSVM3iT0wuITqp7JLtq9xxH04%2FRc6xWWyIvk1KJdWWvZgl66xxFJjQWgq6sbRaghma%2BaaTV2E%2BorhGDH%2Fv5cq7ij3B8L9z37OOIF%2BCwlbCqFFgbhMl0Tqukg5IkmLFz6X0EEPombtAYA8jQfGPi5U3WVyhBB6OMZrID47jApvsKYDV%2BqlkD7nZP5R3ij8MSVVNZycR4TCu%2B74SJ6bzXTV%2FmelynbKitOfSlSr0f7gpcwlb1XsOK1TSpt7e38uHxZnf%2FvH2%2BebiXH25vPvx7%2B%2F52N93fh370cH%2BTe8cbTQTzfLOja42w%2BS%2BDhTa0pOJUNLiJp809yJ19LzhPlgNLj5FBL7Oyh2pRccLsjoVOx4zS9OGgPjQbvC2ed9zUDhE76X7MobpmIFqsHKzemDxQI75c9PWJMIg9k0ZqboWKBGJpzeyM6ceQfSOvqX4RSAkEeKfKin2QEYAoMepCyJd4kXBO7AQUuHGoc1f1pbXKdpyhaoWlmjv1m9GJXjENg9hLXgAyo42WCGvFP1h%2FIFKHOcTJzaNwqFwoi80cJm%2BwMNt7fCc2nSWrWtSQwLpIWhDmON49OarQa1GZnW8gy6rGyFFwATQV0%2Fj9euZCdQxg6dPT7z8hzgKbncU9JPfn3eL65nH34XnxePf729%2BeHu7Pvk1HG447jdOcdGtZ4e9dR6WrqaG53o%2F6UTmob19W5eQC0J%2Ba5mRGjGZkg535oFgH2UMJ7xQNH%2B7oTFAhKw9%2BOBygDANUIAT5QEiTUxek7GYTJUhOfT6Sd%2FlmXi1w3pNG8wlQGpkVRXMpWadU1KnwiSEJE1OFqwZuOzZ3suANHhrHSVaIKE6NuDMQTWl%2BJzAYJqknIJ%2Bedoun3ePn3ePi6eZ6t3jcQdv7eHP%2FceamZJhBMOROeThV6kpwXYfxlrOi0HkPAoIzUk%2F3%2BvB8O71z4CTxa1C%2FEw2dPkiAg3mmjrCxFKKB11rjwJezkkAg27UAeNak%2BMs%2BemkeMz8lOsnfD9Wq9qAj27AD9Y0fL3sxL3VHt4ZSl3wH3neCDGa7YDnYBUwnWG0fTCSpl5rWntaqx0Li1EMNXQuUibvZwPLoCKEfHIyz%2B3qFw1MKAhDFRC4z0Mh2AD8wVDjqV7TGfp4%2B%2FOY%2FxsaJaErjfVGEJH7NWSIvNJNT9QvBMWvE0OTO09%2FHBPv2X722tjs%3D&pcode-active-testids=968861%2C0%2C22&pcode-icookie=s6%2BEkm%2FMv71vSalri0VnS%2BeHnLHZlWzgtU1u8pCg7MuHUZYiTJIJxckZ6LIA84zx3HuopsdvBc5RaTBCnElJtnzZNc8%3D&imp-id=1&charset=utf-8&enable-flat-highlight=1&comboblock-unencoded-vast=1&test-tag=239143779041282&ad-session-id=4300971709539943279&target-id=32531642&tga-with-creatives=1&top-ancestor=https%3A%2F%2Fatavi.com&top-ancestor-undetermined=0&pcode-version=977331&pcodever=977331&flash-ver=0&layout-config=%7B%22win_width%22%3A1600%2C%22win_height%22%3A1200%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A9.3%2C%22isInIframe%22%3Afalse%2C%22w%22%3A1580%2C%22h%22%3A150%2C%22width%22%3A1580%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A10%2C%22top%22%3A489%2C%22sspInfo%22%3A%7B%22deviceSizeSsp%22%3A%7B%7D%7D%2C%22ad_no%22%3A0%2C%22safeArea%22%3A%7B%22top%22%3A0%2C%22bottom%22%3A0%2C%22left%22%3A0%2C%22right%22%3A0%7D%2C%22req_no%22%3A0%7D&grab-orig-len=644&grab=eyJncmFiX3ZlcnNpb24iOjJ9CmqrsnBjz_MC1OkYXZbQwk63KpWEoZZEwD_7zFsb_Dp5pgGC7GdeMy8iYqGvj2PoBELo6FKnrOnSnqLpXTqvBryPK2-8GoKYzoufLh5uvY6nCXQ8baIGhf2abwbeNDVdKRwDRnvZZGD9CcJ6k-hQAySKT82hikbayL-MbDDH7Ujn13kO7WvBUPnuEB_IGLlE0fCLK9MWTWiHn9JhdPw5dZB0rCEJ-UoknblbIQi8u7EqwmHMv8O3tF9Dzlu7hEi-gxBEQDH2xkbZG9k88ymCQHxVuwHzTpRVcNU-VxZrjLhdJRSMpTcZxEtFYXQlWL0jnsD7upba53HbKKYYmd-V7gpWAhYkKOSTnYrapU2w7RPdMVOjqcHWYADzZaOS2YfZ6Ydzg_qQXfagT96HlWW7Arf6CBep3QtmeOvTEK-auCfAAjaSd3LUMQGoG_DzQFyCyQsVJkfgQpNMiHUEPwqAokZ9PhWcmsMsDeGZickfvZC2MpWG0zYgFJQg5ULVbAKu1p350n-RxUrrF7Sldkn7_JSIs4CvLFdcphEqH-yWnYhrTF_z807WNFaieTB49WlArcUH-aGGFuQ0GF-4qy6jIZfKElNN0tuySssdLacD_A%3D%3D&uniformat=true&callback=Ya%5B4804869869312%5D

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

00599f22f72536c1b25c0c6d1725c9a4918bf72b22282b898e91d907c195fcd0

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: application/x-www-form-urlencoded

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
ssr: true
x-yandex-req-id: 1709539943366656-3138634784102893285-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
uniformat-product-type: Direct
x-xss-protection: 1; mode=block
pragma: no-cache
last-modified: Mon, 04 Mar 2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
uniformat: true
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: application/json
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:23 GMT

GET
H2 200 js Show response
www.googletagmanager.com/gtag/ 258 KB
87 KB 135ms
134ms Script
application/javascript 142.250.186.136
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://www.googletagmanager.com/gtag/js?id=G-ET1E5EDMLB&cx=c&_slc=1

Requested by

Host: www.google-analytics.com
URL: https://www.google-analytics.com/analytics.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.186.136 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s07-in-f8.1e100.net

Software

Google Tag Manager /

Resource Hash

5d005763dae483b822d085596af06a851e039c07466057e35256501e15dc8108

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000; includeSubDomains
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
server: Google Tag Manager
vary: Accept-Encoding
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: private, max-age=900
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
access-control-allow-headers: Cache-Control
content-length: 89331
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Mon, 04 Mar 2024 08:12:23 GMT

GET
H2 200 /
www.facebook.com/tr/ 0
185 B 332ms
109ms Image
text/plain 157.240.253.35
FACEBOOK

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://www.facebook.com/tr/?id=380640435658761&ev=PageView&dl=https%3A%2F%2Fatavi.com&rl=&if=false&ts=1709539943329&sw=1600&sh=1200&v=2.9.148&r=stable&ec=0&o=4124&fbp=fb.1.1709539943327.1705923673&pm=1&hrl=aeaa54&ler=empty&cdl=API_unavailable&it=1709539943135&coo=false&cs_cc=1&cas=2791423050930876&rqm=GET

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

157.240.253.35 Frankfurt am Main, Germany, ASN32934 (FACEBOOK, US),

Reverse DNS

edge-star-mini-shv-02-fra5.facebook.com

Software

proxygen-bolt /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000; includeSubDomains

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

strict-transport-security: max-age=31536000; includeSubDomains
date: Mon, 04 Mar 2024 08:12:23 GMT
server: proxygen-bolt
content-type: text/plain
access-control-allow-origin
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=86400
content-length: 0

GET
H2 200 advert.gif
mc.yandex.ru/metrika/ 43 B
233 B 155ms
155ms Image
image/gif 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://mc.yandex.ru/metrika/advert.gif

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
last-modified: Fri, 01 Mar 2024 11:37:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
etag: "65e1be04-2b"
content-type: image/gif
access-control-allow-origin: *
cache-control: max-age=3600
accept-ranges: bytes
timing-allow-origin: *
content-length: 43
expires: Mon, 04 Mar 2024 09:12:23 GMT

GET
H2

200

1 Show response
mc.yandex.ru/watch/25117439/
Redirect Chain

https://mc.yandex.ru/watch/25117439?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3A...
https://mc.yandex.ru/watch/25117439/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%...

440 B
523 B

157ms
157ms

Fetch
application/json

87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/25117439/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A1%3Adp%3A0%3Als%3A433333015274%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A453418439%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

0e43f3a47035efd312824d9b0069b452460ef90ef7dcf9873731fccf34c35db6

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: application/json; charset=utf-8
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 440
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
location: /watch/25117439/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A1%3Adp%3A0%3Als%3A433333015274%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A453418439%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

GET
H2

200

1 Show response
mc.yandex.ru/watch/26812653/
Redirect Chain

https://mc.yandex.ru/watch/26812653?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0&b...
https://mc.yandex.ru/watch/26812653/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0...

447 B
703 B

155ms
154ms

Fetch
application/json

87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/26812653/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A2%3Adp%3A0%3Als%3A122242285070%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A550037837%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29mc%28p-1%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

53aae19665a7d082f6445b05cbb0828b270f4bca8e27787fc59b34bb507decc3

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: application/json; charset=utf-8
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 447
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
location: /watch/26812653/1?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&site-info=%7B%22jquery%22%3Atrue%2C%22version%22%3A%221.10.2%22%7D&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A2%3Adp%3A0%3Als%3A122242285070%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539943%3Ac%3A1%3Arn%3A550037837%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Arqnl%3A1%3Ast%3A1709539943%3At%3AAtavi%20-%20bookmark%20manager&t=gdpr%2814%29mc%28p-1%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%281%29cdl%28na%29ti%281%29
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

GET
H2 200 ga-audiences
www.google.com/ads/ 42 B
408 B 371ms
132ms Image
image/gif 142.250.184.196
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-63183114-1&cid=858364001.1709539943&jid=2099745663&_u=IGBAgEABAAAAAGAAI~&z=1593373359

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.184.196 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s11-in-f4.1e100.net

Software

cafe /

Resource Hash

ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
server: cafe
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 42
x-xss-protection: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

GET
H2 200 ga-audiences
www.google.co.il/ads/ 42 B
408 B 385ms
147ms Image
image/gif 172.217.18.99
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://www.google.co.il/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j101&tid=UA-63183114-1&cid=858364001.1709539943&jid=2099745663&_u=IGBAgEABAAAAAGAAI~&z=1593373359

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.99 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

zrh04s05-in-f99.1e100.net

Software

cafe /

Resource Hash

ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
server: cafe
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 42
x-xss-protection: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

POST
H2 204 collect
analytics.google.com/g/ 0
249 B 275ms
109ms Ping
text/plain 216.239.32.181
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL: https://analytics.google.com/g/collect?v=2&tid=G-ET1E5EDMLB&_ono=1&gtm=45je42t1v9134456973za220&_p=1709539942470&_gaz=1&gcd=13l3l3l3l2&npa=0&dma=0&ul=en-us&sr=1600x1200&cid=858364001.1709539943&ir=1&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&pscdl=noapi&_eu=EBAI&_s=1&dl=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&dt=Atavi%20-%20bookmark%20manager&sid=1709539943&sct=1&seg=0&en=page_view&_fv=1&_ss=1&_ee=1&tfd=3199
Requested by: Host: www.googletagmanager.com
URL: https://www.googletagmanager.com/gtag/js?id=G-ET1E5EDMLB&cx=c&_slc=1
Protocol: H2
Security: TLS 1.3, , AES_128_GCM
Server: 216.239.32.181 , United States, ASN15169 (GOOGLE, US),
Reverse DNS
Software: Golfe2 /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
server: Golfe2
content-type: text/plain
access-control-allow-origin: https://atavi.com
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

POST
H2 204 collect
stats.g.doubleclick.net/g/ 0
47 B 111ms
108ms Ping
text/plain 64.233.184.156
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL: https://stats.g.doubleclick.net/g/collect?v=2&_ono=1&tid=G-ET1E5EDMLB&cid=858364001.1709539943&gtm=45je42t1v9134456973za220&aip=1&dma=0&gcd=13l3l3l3l2&npa=0
Requested by: Host: www.googletagmanager.com
URL: https://www.googletagmanager.com/gtag/js?id=G-ET1E5EDMLB&cx=c&_slc=1
Protocol: H2
Security: TLS 1.3, , AES_128_GCM
Server: 64.233.184.156 , United States, ASN15169 (GOOGLE, US),
Reverse DNS: wa-in-f156.1e100.net
Software: Golfe2 /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
server: Golfe2
content-type: text/plain
access-control-allow-origin: https://atavi.com
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

GET
H2 200 ga-audiences
www.google.co.il/ads/ 42 B
107 B 232ms
147ms Image
image/gif 172.217.18.99
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://www.google.co.il/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&_ono=1&tid=G-ET1E5EDMLB&cid=858364001.1709539943&gtm=45je42t1v9134456973za220&aip=1&dma=0&gcd=13l3l3l3l2&npa=0&z=1544224456

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.99 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

zrh04s05-in-f99.1e100.net

Software

cafe /

Resource Hash

ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
server: cafe
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control: no-cache, no-store, must-revalidate
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 42
x-xss-protection: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

GET
H2 200 ads Show response
googleads.g.doubleclick.net/pagead/ Frame 5053 14 KB
5 KB 542ms
541ms Document
text/html 172.217.18.2
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4894759983606832&output=html&adk=1812271804&adf=3025194257&lmt=1709539943&plat=1%3A16777216%2C2%3A16777216%2C3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&pra=5&wgl=1&easpi=0&asro=0&aseiel=1~2~4~6~8~9~10~11~12~13~14~15~16~17&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1709539942974&bpp=10&bdt=1197&idt=643&shv=r20240228&mjsv=m202402270101&ptt=9&saldr=aa&abxe=1&nras=1&correlator=2103239785549&frm=20&pv=2&ga_vid=858364001.1709539943&ga_sid=1709539944&ga_hid=553673364&ga_fc=1&u_tz=120&u_his=2&u_h=1200&u_w=1600&u_ah=1200&u_aw=1600&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1600&bih=1200&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C95325752%2C95322183%2C95321868%2C95324161&oid=2&pvsid=1650485024642107&tmod=555299862&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1600%2C0%2C1600%2C1200%2C1600%2C1200&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&psd=W251bGwsbnVsbCxudWxsLDNd&ifi=1&uci=a!1&fsb=1&dtd=668

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/show_ads_impl_fy2021.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

172.217.18.2 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s28-in-f2.1e100.net

Software

cafe /

Resource Hash

a6dcfbc74741558222f0c2dbdb86693b27d25c352cf9517f7f7fc4728813fb3d

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control: private
content-encoding: br
content-length: 5155
content-type: text/html; charset=UTF-8
cross-origin-resource-policy: cross-origin
date: Mon, 04 Mar 2024 08:12:24 GMT
expires: Mon, 04 Mar 2024 08:12:24 GMT
observe-browsing-topics: ?1
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
server: cafe
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0

GET
H3 204 gen_204
pagead2.googlesyndication.com/pagead/ 0
20 B 142ms
141ms Image
image/gif 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=advert-bottom-text&ign=false&pw=1600&ph=1200&x=0&y=1130.4

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
server: cafe
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

GET
H3 204 gen_204
pagead2.googlesyndication.com/pagead/ 0
20 B 142ms
141ms Image
image/gif 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=header&ign=false&pw=1600&ph=1200&x=0&y=0

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
x-content-type-options: nosniff
server: cafe
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
expires: Fri, 01 Jan 1990 00:00:00 GMT

POST
H2 200 1
mc.yandex.ru/watch/25117439/ 43 B
74 B 157ms
156ms Ping
image/gif 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/25117439/1?page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&hittoken=1709539943_bb190af745b4f6fcc7806d99173e01067a41bd721ef6a78d13c5dcf601cc112f&browser-info=pa%3A1%3Aar%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A1%3Adp%3A1%3Als%3A433333015274%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539944%3Ac%3A1%3Arn%3A435368300%3Arqn%3A2%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Aco%3A0%3Acpf%3A1%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1709539944&t=gdpr(14)mc(p-2)clc(0-0-0)rqnt(2)lt(5800)aw(1)rcm(1)cdl(na)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%224300971709539943279%22%7D%7D

Requested by

Host: mc.yandex.ru
URL: https://mc.yandex.ru/metrika/watch.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 43
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

POST
H2 200 1
mc.yandex.ru/watch/26812653/ 43 B
74 B 158ms
158ms Ping
image/gif 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/26812653/1?page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&uah=chm%0A%3F0&hittoken=1709539943_adb5efa125764849e551224114316c9722c025a94a49d738384706b8009f89ae&browser-info=pa%3A1%3Aar%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A2%3Adp%3A1%3Als%3A122242285070%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539944%3Ac%3A1%3Arn%3A575017626%3Arqn%3A2%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Aco%3A0%3Acpf%3A1%3Aeu%3A0%3Ans%3A1709539940389%3Agi%3AR0ExLjIuODU4MzY0MDAxLjE3MDk1Mzk5NDM%3D%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1709539944&t=gdpr(14)mc(p-2)clc(0-0-0)rqnt(2)lt(5800)aw(1)rcm(1)cdl(na)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%224300971709539943279%22%7D%7D

Requested by

Host: mc.yandex.ru
URL: https://mc.yandex.ru/metrika/watch.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 43
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

OPTIONS
H2 200 event_confirmation
an.yandex.ru/ Frame 0
0 549ms
166ms Preflight 213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://an.yandex.ru/event_confirmation

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

Accept: */*
Access-Control-Request-Headers: content-type
Access-Control-Request-Method: POST
Origin: https://atavi.com
Sec-Fetch-Mode: cors
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://atavi.com
access-control-max-age: 1728000
content-encoding: gzip
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
date: Mon, 04 Mar 2024 08:12:24 GMT
strict-transport-security: max-age=31536000
timing-allow-origin: *
x-xss-protection: 1; mode=block

POST
H2 200 event_confirmation Show response
an.yandex.ru/ 0
51 B 460ms
155ms XHR
text/plain 213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://an.yandex.ru/event_confirmation

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: application/json

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

GET
H2 200 x150
avatars.mds.yandex.net/get-direct/3986499/wwOQGOF0ltuKOD-_QVxhjg/ 3 KB
4 KB 520ms
179ms Image
image/webp 87.250.247.183
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://avatars.mds.yandex.net/get-direct/3986499/wwOQGOF0ltuKOD-_QVxhjg/x150
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 87.250.247.183 , Russian Federation, ASN208398 (TELETECH, RS),
Reverse DNS: avatars.mds.yandex.net
Software: nginx /
Resource Hash: d2e5978f830c75fc56fe1aba46cda55e5ce5ed7e465556a5fac3f45392f4b797

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
last-modified: Tue, 28 Jun 2022 20:30:58 GMT
server: nginx
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000,immutable
access-control-allow-credentials: true
content-length: 3398
x-request-id: e0ff1b53cd29f247

GET
H/1.1 200
Ok yandex.ru
favicon.yandex.net/favicon/ 756 B
969 B 1860ms
157ms Image
image/png 77.88.21.36
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://favicon.yandex.net/favicon/yandex.ru?size=32&stub=2

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

77.88.21.36 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

favicon.yandex.net

Software

Resource Hash

dd321da9fbfb2751ef37064414b32f455ae4e64bfdcfc7c89f9681b163dca0fb

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
Cache-Control: max-age=691200
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Content-Type: image/png

GET
H2 200 y150
avatars.mds.yandex.net/get-direct/5230383/uqHsuGSoqLmpCI7OEtrT7A/ 4 KB
5 KB 632ms
291ms Image
image/webp 87.250.247.183
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://avatars.mds.yandex.net/get-direct/5230383/uqHsuGSoqLmpCI7OEtrT7A/y150
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 87.250.247.183 , Russian Federation, ASN208398 (TELETECH, RS),
Reverse DNS: avatars.mds.yandex.net
Software: nginx /
Resource Hash: ba7e9d220d288296e4b1c3ab4e530659df2fd9c18b0db01c41b93957d2c564b2

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
last-modified: Fri, 17 Mar 2023 08:26:17 GMT
server: nginx
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000,immutable
access-control-allow-credentials: true
content-length: 4400
x-request-id: de188b0f8ef06c53

GET
H/1.1 200
Ok om-studio.pro
favicon.yandex.net/favicon/ 1 KB
1 KB 1702ms
158ms Image
image/png 77.88.21.36
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://favicon.yandex.net/favicon/om-studio.pro?size=32&stub=2

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

77.88.21.36 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

favicon.yandex.net

Software

Resource Hash

9525c832fde4d5b5cc899d9a68ddf9c519865b933d4417c4b3448135d3ef00c0

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
Cache-Control: max-age=691200
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Content-Type: image/png

GET
H2 200 y180
avatars.mds.yandex.net/get-direct/3602877/jhxEGeqhAT4UQWrATsRTJQ/ 9 KB
10 KB 518ms
178ms Image
image/webp 87.250.247.183
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://avatars.mds.yandex.net/get-direct/3602877/jhxEGeqhAT4UQWrATsRTJQ/y180
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 87.250.247.183 , Russian Federation, ASN208398 (TELETECH, RS),
Reverse DNS: avatars.mds.yandex.net
Software: nginx /
Resource Hash: 58a187104a16d9afc041fee6be49a76920aba6db7928bffb40e8cb00e89d9b40

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
last-modified: Tue, 07 Mar 2023 11:54:14 GMT
server: nginx
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000,immutable
access-control-allow-credentials: true
content-length: 9710
x-request-id: 29307af7ae99db83

GET
H/1.1 200
Ok porsche-dealer.ru
favicon.yandex.net/favicon/ 2 KB
3 KB 2178ms
162ms Image
image/png 77.88.21.36
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://favicon.yandex.net/favicon/porsche-dealer.ru?size=32&stub=2

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

77.88.21.36 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

favicon.yandex.net

Software

Resource Hash

43793f374800b3a23ada6e3aa893f61cdc766a140967f0f68ca05b15c1560a8a

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
Cache-Control: max-age=691200
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Content-Type: image/png

GET
H2 200 wy150
avatars.mds.yandex.net/get-direct/5332936/fpSuVB0qrsur-NRsz490qA/ 7 KB
7 KB 519ms
179ms Image
image/webp 87.250.247.183
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://avatars.mds.yandex.net/get-direct/5332936/fpSuVB0qrsur-NRsz490qA/wy150
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 87.250.247.183 , Russian Federation, ASN208398 (TELETECH, RS),
Reverse DNS: avatars.mds.yandex.net
Software: nginx /
Resource Hash: 24018e9767406ae623dae1011b3884333611d2c6cbd56e56b70a307bbb71ab65

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
last-modified: Wed, 21 Feb 2024 07:38:51 GMT
server: nginx
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000,immutable
access-control-allow-credentials: true
content-length: 7188
x-request-id: 50d49b2899c51405

GET
H/1.1 200
Ok medzon-allon4.ru
favicon.yandex.net/favicon/ 1 KB
1 KB 2016ms
157ms Image
image/png 77.88.21.36
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://favicon.yandex.net/favicon/medzon-allon4.ru?size=32&stub=2

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

77.88.21.36 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

favicon.yandex.net

Software

Resource Hash

1338db63c656f7a679b55dd6ad7d0ef16bad1b959ead9922b23f279e9a2b41d3

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
Cache-Control: max-age=691200
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Content-Type: image/png

GET
H2 200 x180
avatars.mds.yandex.net/get-direct/5241276/Cx9IeDYn763qjSLRyyS7XA/ 5 KB
6 KB 518ms
179ms Image
image/webp 87.250.247.183
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://avatars.mds.yandex.net/get-direct/5241276/Cx9IeDYn763qjSLRyyS7XA/x180
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 87.250.247.183 , Russian Federation, ASN208398 (TELETECH, RS),
Reverse DNS: avatars.mds.yandex.net
Software: nginx /
Resource Hash: b49682c57ceef4ea2d09364027ec35ca3408d515453f3ab077ccc7e5bf2906f7

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
last-modified: Sat, 13 May 2023 14:28:14 GMT
server: nginx
nel: {"report_to": "network-errors", "max_age": 600, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: {"group": "network-errors", "max_age": 600, "endpoints": [ { "url": "https://dr.yandex.net/s3_nel?datacenter=VLA"}]}
content-type: image/webp
access-control-allow-origin: *
cache-control: max-age=31536000,immutable
access-control-allow-credentials: true
content-length: 5404
x-request-id: 181ea95910daf227

GET
H/1.1 200
Ok smile-at-once.ru
favicon.yandex.net/favicon/ 623 B
836 B 1542ms
163ms Image
image/png 77.88.21.36
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://favicon.yandex.net/favicon/smile-at-once.ru?size=32&stub=2

Requested by

Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp

Protocol

HTTP/1.1

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

77.88.21.36 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

favicon.yandex.net

Software

Resource Hash

0cac7ee04834c10c0eaf35e2d1a1f9e980efab3bd00acc89784616a67c1bf1de

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
Cache-Control: max-age=691200
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
X-XSS-Protection: 1; mode=block
Content-Type: image/png

GET
H2 200 4317461 Show response
mc.yandex.ru/watch/ 276 B
312 B 154ms
154ms Fetch
application/json 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/4317461?wmode=7&page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&nohit=1&charset=utf-8&cnt-class=1&uah=chm%0A%3F0&browser-info=pv%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A3%3Adp%3A1%3Als%3A1074996893175%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101223%3Aet%3A1709539944%3Ac%3A1%3Arn%3A746787986%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Aco%3A0%3Acpf%3A1%3Aeu%3A0%3Ans%3A1709539940389%3Aadb%3A2%3App%3A3629563401%3Arqnl%3A1%3Ast%3A1709539944%3At%3AAtavi%20-%20bookmark%20manager&t=mc(p-2)clc(0-0-0)lt(5800)aw(1)rcm(1)cdl(na)ti(1)

Requested by

Host: mc.yandex.ru
URL: https://mc.yandex.ru/metrika/watch.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

a652c50dc01c22e799baa68c82dfff2f8c4269a409de4664cc21fb38303294e5

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:23 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
last-modified: Mon, 04-Mar-2024 08:12:23 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: application/json; charset=utf-8
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 276
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:23 GMT

POST
H2 200 trace Show response
yandex.ru/ads/ 0
1 KB 725ms
171ms XHR
text/plain 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/ads/trace

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain;charset=UTF-8

Response headers

access-control-allow-origin: *
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539944551452-1342190626834792698-balancer-l7leveler-kubr-yp-vla-259-BAL
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}

GET
H2 200 render.html Show response
yastatic.net/safeframe-bundles/0.83/1-1-0/ Frame 4249 24 KB
7 KB 586ms
112ms Document
text/html 178.154.131.217
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yastatic.net/safeframe-bundles/0.83/1-1-0/render.html

Requested by

Host: yastatic.net
URL: https://yastatic.net/safeframe-bundles/0.83/host.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

178.154.131.217 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

static.yandex.net

Software

nginx/1.17.9 /

Resource Hash

9c911ab93cf6099aeeddb19cb1903d0ef838329443c3a0549c754da47f90a70a

Security Headers

Name	Value
Strict-Transport-Security	max-age=43200000; includeSubDomains;

Request headers

Referer: https://atavi.com/
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
content-length: 6262
content-type: text/html
date: Mon, 04 Mar 2024 08:12:24 GMT
etag: "eb77de48712912aadc9aa8171ac75ede"
expires: Fri, 14 Nov 2053 18:47:08 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
server: nginx/1.17.9
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow

OPTIONS
H2 200 event_confirmation
an.yandex.ru/ Frame 0
0 378ms
163ms Preflight 213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://an.yandex.ru/event_confirmation

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

Accept: */*
Access-Control-Request-Headers: content-type
Access-Control-Request-Method: POST
Origin: https://atavi.com
Sec-Fetch-Mode: cors
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://atavi.com
access-control-max-age: 1728000
content-encoding: gzip
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
date: Mon, 04 Mar 2024 08:12:24 GMT
strict-transport-security: max-age=31536000
timing-allow-origin: *
x-xss-protection: 1; mode=block

POST
H2 200 event_confirmation Show response
an.yandex.ru/ 0
926 B 462ms
155ms XHR
text/plain 213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://an.yandex.ru/event_confirmation

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: application/json

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

POST
H2 200 1QxLpldj0KW200000000U9nJJB_qH5lwaBEjuQJFUpuVOl_0QvdUz3IL0GWyOIAXJa9Ngs957peof382nJCdVPxp4YHU2kBLNWKIhOpDGB8Jn0S29eQPZCaB8Eo5Z39L4DPAnW0z26ilOrks4CDHCFyi8pDGv2eZIEjTHWOP1eQ_ZBEO61ZcCe54bZ8jO6LWMCiK1...
yandex.ru/an/rtbcount/ 43 B
1 KB 162ms
162ms Ping
image/gif 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/an/rtbcount/1QxLpldj0KW200000000U9nJJB_qH5lwaBEjuQJFUpuVOl_0QvdUz3IL0GWyOIAXJa9Ngs957peof382nJCdVPxp4YHU2kBLNWKIhOpDGB8Jn0S29eQPZCaB8Eo5Z39L4DPAnW0z26ilOrks4CDHCFyi8pDGv2eZIEjTHWOP1eQ_ZBEO61ZcCe54bZ8jO6LWMCiK1MIVPVeF1A-O1CvU-7baqcS6XkAhl9uNXTWO_ZAnW9p035J9qCki22IdCeCqpsLc0bdBpEIe0BPs8tC-irB5RxaDrYUPORw-2bPv5qp-P7PmueSuckMkGJZOCojO7XzWsi32k8E5wG3BVnXWlCa2ySa7-uSiOdSq2tdTRjY_PG7vPm4hvqdMb4O-iFG5rWOGOBp9cbRsSDcgOsR2Nrb1-ZlO6bWci3rVCld-fiCV5jhEOFjuO0lZ0hQUncatcZ_DkwU_aWrcw06sX1DiB8_OUCDJdAsopDtJ_0A22inVii6i_mbdJMIN3YuvEo7ydVqiTZPBStDZOyCDx4mxs5bFi8i_O5--zCA_R_jtxAZ_mSwpW0FefnKSSxumRk2u4BE3W_4M1qQOFkLWO6Ymx-K4UMag9yYt2pWRc5TmJcFQm2bsWfFr0YVZ2qx63voCFpWP5t01pGC0wQszlW00?pcode-active-testids=974087%2C0%2C68%3B968861%2C0%2C22

Requested by

Host: yastatic.net
URL: https://yastatic.net/partner-code-bundles/977331/ccf08994f2763a3c56ad.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-yandex-req-id: 1709539944114700-1373490914908066589-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
x-xss-protection: 1; mode=block
pragma: no-cache
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:24 GMT

POST
H2 200 1
mc.yandex.ru/watch/4317461/ 43 B
77 B 161ms
160ms Ping
image/gif 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/4317461/1?page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&cnt-class=1&uah=chm%0A%3F0&hittoken=1709539943_e0d8387285b736863af9bc10f4754a4ba9d53624cf0d30dcf95e732794bb1177&browser-info=pa%3A1%3Aar%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A3%3Adp%3A1%3Als%3A1074996893175%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101224%3Aet%3A1709539944%3Ac%3A1%3Arn%3A1058820920%3Arqn%3A1%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Afp%3A2091%3Ads%3A0%2C316%2C305%2C61%2C%2C0%2C%2C914%2C5%2C%2C%2C%2C2361%3Aco%3A0%3Acpf%3A1%3Aeu%3A0%3Ans%3A1709539940389%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1709539944&t=mc(p-3-h-1)clc(0-0-0)rqnt(1)lt(5800)aw(1)rcm(1)cdl(na)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%224300971709539943279%22%7D%7D

Requested by

Host: mc.yandex.ru
URL: https://mc.yandex.ru/metrika/watch.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 43
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:24 GMT

GET
H2 200 4317461
mc.yandex.ru/watch/ 43 B
0 157ms
157ms Fetch
image/gif 87.250.250.119
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://mc.yandex.ru/watch/4317461?page-url=https%3A%2F%2Fatavi.com%2Fshare%2Fwj7iyhzocihp&charset=utf-8&cnt-class=1&uah=chm%0A%3F0&hittoken=1709539943_e0d8387285b736863af9bc10f4754a4ba9d53624cf0d30dcf95e732794bb1177&browser-info=pv%3A1%3Aar%3A1%3Avf%3Arrsvvwew7a2ym6ot2ptopktb%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1261%3Acn%3A3%3Adp%3A1%3Als%3A1074996893175%3Ahid%3A677177651%3Az%3A120%3Ai%3A20240304101224%3Aet%3A1709539944%3Ac%3A1%3Arn%3A206980394%3Arqn%3A2%3Au%3A1709539943355306397%3Aw%3A1600x1200%3As%3A1600x1200x24%3Ask%3A1%3Aco%3A0%3Acpf%3A1%3Aeu%3A0%3Ans%3A1709539940389%3Aadb%3A2%3App%3A3629563401%3Arqnl%3A1%3Ast%3A1709539944%3At%3AAtavi%20-%20bookmark%20manager&t=mc(p-3-h-1)clc(0-0-0)rqnt(2)lt(5800)aw(1)rcm(1)cdl(na)ti(1)

Requested by

Host: mc.yandex.ru
URL: https://mc.yandex.ru/metrika/watch.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.250.250.119 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

mc.yandex.ru

Software

Resource Hash

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
strict-transport-security: max-age=31536000
last-modified: Mon, 04-Mar-2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
content-length: 43
x-xss-protection: 1; mode=block
expires: Mon, 04-Mar-2024 08:12:24 GMT

GET
H2 200 ca-pub-4894759983606832 Show response
fundingchoicesmessages.google.com/i/ 183 KB
61 KB 392ms
155ms Script
application/javascript 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/i/ca-pub-4894759983606832?ers=2

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/show_ads_impl_fy2021.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

9945ca26b81e119ea30b06f40984b2fb2878c917c7eb1c4ee210c96a4e263b24

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport, script-src 'report-sample' 'nonce-vbnWduw_WTRSpb1p2KCB7w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport, script-src 'report-sample' 'nonce-vbnWduw_WTRSpb1p2KCB7w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorServingWebSwitchboardHttp/web-reports?context=eJzjStHikmLw0JBiOO90h-k6ENcyPGNqBWIDjedMFkDM-OcFEycQv_vykkng60smCSDWAuIdPh4sfOums6oAseH66ayRQBzzfDprChA7pc9gDQFin_oZrHFALMTD8aJl2no2gRkHr85mAgADMC1S"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: SAMEORIGIN
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
timing-allow-origin: *
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 200 slotcar_library_fy2021.js Show response
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/ 90 KB
31 KB 157ms
156ms Script
text/javascript 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/slotcar_library_fy2021.js

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4894759983606832

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

4963b0ae4af8f870aec748f27009f8f94e0bd2d5b42a47496ae237a7b6d86ba4

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: br
x-content-type-options: nosniff
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 32089
x-xss-protection: 0
server: cafe
etag: 13269704437244988538
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cache-control: private, max-age=1209600
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:24 GMT

POST
H2 204 ping
pagead2.googlesyndication.com/pagead/ 0
0 145ms
141ms Fetch
text/html 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL: https://pagead2.googlesyndication.com/pagead/ping?e=1
Requested by: Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4894759983606832
Protocol: H2
Security: TLS 1.3, , AES_128_GCM
Server: 172.217.16.130 , United States, ASN15169 (GOOGLE, US),
Reverse DNS: fra15s46-in-f2.1e100.net
Software: /
Resource Hash

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain;charset=UTF-8

Response headers

GET d.png
ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/ Frame 4249 0
0

GET
H/1.1 200
OK yndx
px.arcspire.io/ Frame 4249 0
124 B 3382ms
112ms Image
text/plain 35.177.4.157
AMAZON-02

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://px.arcspire.io/yndx?id=9d4cd41a-f59d-4815-8a89-9d30806f5389
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: HTTP/1.1
Security: TLS 1.3, , AES_128_GCM
Server: 35.177.4.157 London, United Kingdom, ASN16509 (AMAZON-02, US),
Reverse DNS: ec2-35-177-4-157.eu-west-2.compute.amazonaws.com
Software: envoy /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:27 GMT
x-envoy-upstream-service-time: 0
server: envoy
content-length: 0

GET
H2

200

0800007F6C82E5659B17698602B33D6D
an.yandex.ru/mapuid/sapeis/ Frame 4249
Redirect Chain

https://acint.net/rmatch/?dp=151&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F%24%7BUSER_ID%7D
https://acint.net/rmatch/?r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F$%7BUSER_ID%7D&dp=151&tc=1
https://ssp-rtb.sape.ru/rmatch?r=https%3A%2F%2Facint.net%2Frmatch%3Fdp%3D14%26euid%3D$%7BUSER_ID%7D%26r%3Dhttps%253A%252F%252Fan.yandex.ru%252Fmapuid%252Fsapeis%252F$%257BUSER_ID%257D&dp=14
https://acint.net/rmatch?dp=14&euid=1D03420A6C82E565F700D214024108E4&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsapeis%2F$%7BUSER_ID%7D
https://an.yandex.ru/mapuid/sapeis/0800007F6C82E5659B17698602B33D6D

43 B
80 B

156ms
156ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/sapeis/0800007F6C82E5659B17698602B33D6D

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

date: Mon, 04 Mar 2024 08:12:28 GMT
server: openresty
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
location: https://an.yandex.ru/mapuid/sapeis/0800007F6C82E5659B17698602B33D6D
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-length: 154
expires: Wed, 19 Apr 2000 11:43:00 GMT

GET
H2

200

690eacaf-9699-5240-86e1-2687e304a4ec
an.yandex.ru/mapuid/betweendigitalis/ Frame 4249
Redirect Chain

https://ads.betweendigital.com/match?bidder_id=43554&callback_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbetweendigitalis%2F%24%7BUSER_ID%7D
https://ads.betweendigital.com/match?bidder_id=43554&callback_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbetweendigitalis%2F%24%7BUSER_ID%7D&crf=1&rts=4685510270572020911
https://an.yandex.ru/mapuid/betweendigitalis/690eacaf-9699-5240-86e1-2687e304a4ec

43 B
80 B

158ms
157ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/betweendigitalis/690eacaf-9699-5240-86e1-2687e304a4ec

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

location: https://an.yandex.ru/mapuid/betweendigitalis/690eacaf-9699-5240-86e1-2687e304a4ec
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0

GET
H2

200

demconf.jpg
dpm.demdex.net/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/adobedmp/
https://dpm.demdex.net/ibs:dpid=423652&dpuuid=C6ADB4D812E1FD46
https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=423652&dpuuid=C6ADB4D812E1FD46

42 B
716 B

125ms
124ms

Image
image/gif

63.34.206.49
AMAZON-02

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=423652&dpuuid=C6ADB4D812E1FD46

Protocol

Server

63.34.206.49 Dublin, Ireland, ASN16509 (AMAZON-02, US),

Reverse DNS

ec2-63-34-206-49.eu-west-1.compute.amazonaws.com

Software

Resource Hash

ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000; includeSubDomains
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

dcs: dcs-prod-irl1-1-v057-086215b62.edge-irl1.demdex.com 2 ms
pragma: no-cache
date: Mon, 04 Mar 2024 08:12:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-encoding: gzip
x-tid: +UebUPqkTiA=
content-type: image/gif
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-length: 59
expires: Thu, 01 Jan 1970 00:00:00 UTC

Redirect headers

dcs: dcs-prod-irl1-2-v057-03316204c.edge-irl1.demdex.com 0 ms
pragma: no-cache
date: Mon, 04 Mar 2024 08:12:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-tid: gGQwgIxnTi8=
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=423652&dpuuid=C6ADB4D812E1FD46
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-length: 0
expires: Thu, 01 Jan 1970 00:00:00 UTC

GET
H2

200

match
ads.betweendigital.com/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/betweenx/
https://ads.betweendigital.com/match?bidder_id=161&external_user_id=945FB3D514819142
https://ads.betweendigital.com/match?bidder_id=161&external_user_id=945FB3D514819142&crf=1&rts=8970510901498620488

68 B
598 B

113ms
112ms

Image
image/png

188.42.191.196
SERVERS-COM

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://ads.betweendigital.com/match?bidder_id=161&external_user_id=945FB3D514819142&crf=1&rts=8970510901498620488
Protocol: H2
Server: 188.42.191.196 , Luxembourg, ASN7979 (SERVERS-COM, US),
Reverse DNS
Software: /
Resource Hash: 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 68
content-type: image/png

Redirect headers

location: /match?bidder_id=161&external_user_id=945FB3D514819142&crf=1&rts=8970510901498620488
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0

GET
H/1.1

204
No Content

pixel
im.bluevoox.com/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/blueseaxcom/
https://im.bluevoox.com/pixel?s1=1&s2=1315&s3=vldyrx2shs82pv9o&cm=1&rd=1&puid=3B6D711804A6FA24

0
241 B

3614ms
196ms

Image
text/plain

52.45.175.185
AMAZON-AES

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://im.bluevoox.com/pixel?s1=1&s2=1315&s3=vldyrx2shs82pv9o&cm=1&rd=1&puid=3B6D711804A6FA24
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: HTTP/1.1
Server: 52.45.175.185 Ashburn, United States, ASN14618 (AMAZON-AES, US),
Reverse DNS: ec2-52-45-175-185.compute-1.amazonaws.com
Software: openresty /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Connection: close
Date: Mon, 04 Mar 2024 08:12:28 GMT
Server: openresty

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539944638311-4798413939002330306-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
location: https://im.bluevoox.com/pixel?s1=1&s2=1315&s3=vldyrx2shs82pv9o&cm=1&rd=1&puid=3B6D711804A6FA24
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

GET

pixel
cm.g.doubleclick.net/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/google/?partner-tag=yandex_llc
https://cm.g.doubleclick.net/pixel?google_nid=yandex_llc&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

0
0

GET

pixel
cm.g.doubleclick.net/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/google/?partner-tag=yandexcom
https://cm.g.doubleclick.net/pixel?google_nid=yandexcom&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

0
0

GET

pixel
cm.g.doubleclick.net/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/google/?partner-tag=yandexru
https://cm.g.doubleclick.net/pixel?google_nid=yandexru&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

0
0

GET
H2

200

cm.gif
ad.mail.ru/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/mailweb/
https://ad.mail.ru/cm.gif?p=155&id=8F4F933B11BFD387

43 B
302 B

3556ms
208ms

Image
image/gif

95.163.41.56
VK-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://ad.mail.ru/cm.gif?p=155&id=8F4F933B11BFD387
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Server: 95.163.41.56 , Russian Federation, ASN47764 (VK-AS, RU),
Reverse DNS: r.mail.ru
Software: nginx /
Resource Hash: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:28 GMT
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
server: nginx
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
content-type: image/gif
cache-control: max-age=21600
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-length: 43
expires: Mon, 04 Mar 2024 14:12:28 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539944639372-12148483312905387591-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
location: https://ad.mail.ru/cm.gif?p=155&id=8F4F933B11BFD387
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

GET
H2

204

/
csync.loopme.me/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/minimobww/
https://yandex.digital-services.solutions/api/sync?demand=YANV2EU&userid=D34C897EA273B526&expires=1&usergroup=1
https://x.bidswitch.net/sync?dsp_id=469&user_id=D34C897EA273B526&expires=1&user_group=1
https://x.bidswitch.net/ul_cb/sync?dsp_id=469&user_id=D34C897EA273B526&expires=1&user_group=1
https://csync.loopme.me/?partner_id=1196&uid=a137a0e1-92d0-4b99-9bff-ac7904af4d93&vt=&gdpr=&gdpr_consent=&gdpr_pd=&us_privacy=

0
152 B

353ms
117ms

Image
text/plain

35.214.164.50
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://csync.loopme.me/?partner_id=1196&uid=a137a0e1-92d0-4b99-9bff-ac7904af4d93&vt=&gdpr=&gdpr_consent=&gdpr_pd=&us_privacy=
Protocol: H2
Server: 35.214.164.50 Groningen, Netherlands, ASN15169 (GOOGLE, US),
Reverse DNS: 50.164.214.35.bc.googleusercontent.com
Software: _ /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:28 GMT
server: _

Redirect headers

Location: //csync.loopme.me/?partner_id=1196&uid=a137a0e1-92d0-4b99-9bff-ac7904af4d93&vt=&gdpr=&gdpr_consent=&gdpr_pd=&us_privacy=
Date: Mon, 04 Mar 2024 08:12:28 GMT
Cache-Control: no-cache, no-store, must-revalidate
Server: nginx
Connection: keep-alive
Content-Length: 0

GET

sync
t.adx.opera.com/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/operacom/
https://t.adx.opera.com/sync?vendor=60143&uid=3E4913183DD245CE

0
0

GET
H2

204

yandex_dsp_new
sync.dmp.otm-r.com/match/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/videonowssp/
https://sync.dmp.otm-r.com/match/yandex_dsp_new?id=257F0A4CC087D421

0
69 B

1730ms
151ms

Image
text/plain

194.55.244.185
PROCLOUD PROCLOUD...

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://sync.dmp.otm-r.com/match/yandex_dsp_new?id=257F0A4CC087D421
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Server: 194.55.244.185 Moscow, Russian Federation, ASN34959 (PROCLOUD PROCLOUD MSK, RU),
Reverse DNS
Software: nginx/1.23.2 /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
date: Mon, 04 Mar 2024 08:12:26 GMT
server: nginx/1.23.2

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539944640325-8220740184730516050-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
location: https://sync.dmp.otm-r.com/match/yandex_dsp_new?id=257F0A4CC087D421
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

GET
H/1.1

200
OK

user-sync
sync.adkernel.com/ Frame 4249
Redirect Chain

https://yandex.ru/an/mapuid/xapadsssp/
https://sync.adkernel.com/user-sync?dsp=94&t=image&uid=AAB5B6E5B633EE63

42 B
202 B

349ms
115ms

Image
image/gif

77.245.57.72
WEBAIR-INTERNET-MTL

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://sync.adkernel.com/user-sync?dsp=94&t=image&uid=AAB5B6E5B633EE63
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: HTTP/1.1
Server: 77.245.57.72 , United States, ASN36057 (WEBAIR-INTERNET-MTL, US),
Reverse DNS
Software: nginx /
Resource Hash: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date: Mon, 04 Mar 2024 08:12:25 GMT
Cache-Control: no-store
Server: nginx
Connection: close
Content-Length: 42
Content-Type: image/gif

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Mon, 04 Mar 2024 08:12:24 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539944691642-6436904984242056080-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
location: https://sync.adkernel.com/user-sync?dsp=94&t=image&uid=AAB5B6E5B633EE63
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:24 GMT

GET
H2

200

0db5cf7b64fd776b32193c59a9cb4dfc9daea7f04194a96d4614d9810f73a1fa
an.yandex.ru/mapuid/mediascope/ Frame 4249
Redirect Chain

https://cm.tns-counter.ru/yacm
https://an.yandex.ru/mapuid/mediascope/0db5cf7b64fd776b32193c59a9cb4dfc9daea7f04194a96d4614d9810f73a1fa

43 B
80 B

155ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/mediascope/0db5cf7b64fd776b32193c59a9cb4dfc9daea7f04194a96d4614d9810f73a1fa

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
server: ms-counter-4.4.3/1.22.1
content-type: text/html
location: https://an.yandex.ru/mapuid/mediascope/0db5cf7b64fd776b32193c59a9cb4dfc9daea7f04194a96d4614d9810f73a1fa
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate
timing-allow-origin: *
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT

GET
H2

204

cr
cr.frontend.weborama.fr/ Frame 4249
Redirect Chain

https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F{WEBO_CID}
https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F%7BWEBO_CID%7D&bounce=1&random=1823858371

0
45 B

110ms
109ms

Image
text/plain

34.111.129.221
GOOGLE-CLOUD-PLAT...

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F%7BWEBO_CID%7D&bounce=1&random=1823858371
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Server: 34.111.129.221 Kansas City, United States, ASN396982 (GOOGLE-CLOUD-PLATFORM, US),
Reverse DNS: 221.129.111.34.bc.googleusercontent.com
Software: Weborama Collect Frontend /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:25 GMT
via: 1.1 google
last-modified: Mon, 04 Mar 2024 08:12:25 GMT
server: Weborama Collect Frontend
vary: Origin
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 03 Jul 2001 06:00:00 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:25 GMT
via: 1.1 google
last-modified: Mon, 04 Mar 2024 08:12:25 GMT
server: Weborama Collect Frontend
vary: Origin
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
location: https://cr.frontend.weborama.fr/cr?key=yandex&url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fdmpweborama%2F%7BWEBO_CID%7D&bounce=1&random=1823858371
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
expires: Tue, 03 Jul 2001 06:00:00 GMT

GET
H2

200

4b66d12c422f8f78484e
an.yandex.ru/mapuid/targetixis/ Frame 4249
Redirect Chain

https://dm.hybrid.ai/match?id=182
https://an.yandex.ru/mapuid/targetixis/4b66d12c422f8f78484e

43 B
180 B

158ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/targetixis/4b66d12c422f8f78484e

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:27 GMT
server: Hybrid Web Server
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
location: https://an.yandex.ru/mapuid/targetixis/4b66d12c422f8f78484e
access-control-allow-origin: https://yastatic.net
cache-control: no-cache, no-store
access-control-allow-credentials: true
x-mode: 577
content-length: 0
x-xss-protection: 1; mode=block
expires: -1

GET
H2

200

8d677794387ee6b91042
an.yandex.ru/mapuid/dmphybridai/ Frame 4249
Redirect Chain

https://dm.hybrid.ai/yandexdmp-match
https://an.yandex.ru/mapuid/dmphybridai/8d677794387ee6b91042?sign=3483204629

43 B
80 B

158ms
156ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/dmphybridai/8d677794387ee6b91042?sign=3483204629

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:27 GMT
server: Hybrid Web Server
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
location: https://an.yandex.ru/mapuid/dmphybridai/8d677794387ee6b91042?sign=3483204629
access-control-allow-origin: *
cache-control: no-cache, no-store
x-mode: 552
content-length: 0
x-xss-protection: 1; mode=block
expires: -1

GET
H2

200

G8LfKj1dEzDvVgd7iE.G
an.yandex.ru/mapuid/dmpamberdata/ Frame 4249
Redirect Chain

https://dmg.digitaltarget.ru/1/119/i/i?i=1709539943
https://dmg.digitaltarget.ru/awg/custom/119/i/i?call_source=awg&ts=1709539948016&i=1709539943
https://an.yandex.ru/mapuid/dmpamberdata/G8LfKj1dEzDvVgd7iE.G

43 B
80 B

158ms
157ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/dmpamberdata/G8LfKj1dEzDvVgd7iE.G

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

Date: Mon, 04 Mar 2024 08:12:28 GMT
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Content-Type-Options: nosniff
Server: nginx
X-Permitted-Cross-Domain-Policies: master-only
X-Frame-Options: DENY
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Location: https://an.yandex.ru/mapuid/dmpamberdata/G8LfKj1dEzDvVgd7iE.G
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Connection: keep-alive
Content-Length: 0
X-XSS-Protection: 1; mode=block

GET
H2

200

TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA
an.yandex.ru/mapuid/mediasurferis/ Frame 4249
Redirect Chain

https://dsp.mpartner.digital/dmp/syncsspdmp?sspid=4
https://an.yandex.ru/mapuid/mediasurferis/TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA

43 B
80 B

156ms
156ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/mediasurferis/TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:28 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:28 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:28 GMT

Redirect headers

location: https://an.yandex.ru/mapuid/mediasurferis/TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA
date: Mon, 04 Mar 2024 08:12:28 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-type: text/html; charset=utf-8
content-length: 109
p3p: policyref="//dsp.mpartner.digital/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"

GET
H2

200

match
match.360yield.com/ Frame 4249
Redirect Chain

https://euw-ice.360yield.com/server_match?partner_id=N&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fazerionis%2F{PUB_USER_ID}
https://euw-ice.360yield.com/ul_cb/server_match?partner_id=N&r=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fazerionis%2F%7BPUB_USER_ID%7D
https://an.yandex.ru/mapuid/azerionis/8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6
https://match.360yield.com/match?external_user_id=8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6&publisher_dsp_id=429&publisher_call_type=redirect

43 B
198 B

132ms
122ms

Image
image/gif

52.208.220.232
AMAZON-02

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://match.360yield.com/match?external_user_id=8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6&publisher_dsp_id=429&publisher_call_type=redirect
Protocol: H2
Server: 52.208.220.232 Dublin, Ireland, ASN16509 (AMAZON-02, US),
Reverse DNS: ec2-52-208-220-232.eu-west-1.compute.amazonaws.com
Software: /
Resource Hash: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
date: Mon, 04 Mar 2024 08:12:26 GMT
content-type: image/gif
content-length: 43
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
location: https://match.360yield.com/match?external_user_id=8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6&publisher_dsp_id=429&publisher_call_type=redirect
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:26 GMT

GET
H2

200

e18a247c-a79c-44c9-6b53-dccd426bdf5c
an.yandex.ru/mapuid/buzzooladspis/ Frame 4249
Redirect Chain

https://exchange.buzzoola.com/cookiesync/redirect/yandex?redirect_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fbuzzooladspis%2F%24%7BUUID%7D
https://an.yandex.ru/mapuid/buzzooladspis/e18a247c-a79c-44c9-6b53-dccd426bdf5c

43 B
152 B

155ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/buzzooladspis/e18a247c-a79c-44c9-6b53-dccd426bdf5c

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:29 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:29 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:29 GMT

Redirect headers

location: https://an.yandex.ru/mapuid/buzzooladspis/e18a247c-a79c-44c9-6b53-dccd426bdf5c
date: Mon, 04 Mar 2024 08:12:29 GMT
server: nginx
content-length: 101
serverid: TODO
content-type: text/html; charset=utf-8

GET
H2

200

2599623751526948341
an.yandex.ru/mapuid/targetads/ Frame 4249
Redirect Chain

https://eye.targetads.io/sync/yandex/
https://an.yandex.ru/mapuid/targetads/2599623751526948341

43 B
80 B

156ms
156ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/targetads/2599623751526948341

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:29 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:29 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:29 GMT

Redirect headers

location: https://an.yandex.ru/mapuid/targetads/2599623751526948341
date: Mon, 04 Mar 2024 08:12:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 0

GET
H2

200

ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067
yandex.ru/an/mapuid/yeahmobissp/ Frame 4249
Redirect Chain

https://gw-iad-bid.ymmobi.com/dsp/user/sync?dspid=eWFuZGV4X2RzcA==&dspuid=C0F31FE4715E8D69&callback=https%3A%2F%2Fyandex.ru%2Fan%2Fmapuid%2Fyeahmobissp%2F%7Bym_user_id%7D
https://yandex.ru/an/mapuid/yeahmobissp/ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067

43 B
231 B

159ms
159ms

Image
image/gif

5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://yandex.ru/an/mapuid/yeahmobissp/ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067

Protocol

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:30 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
last-modified: Mon, 04 Mar 2024 08:12:30 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
x-yandex-req-id: 1709539950038694-9498339936236023002-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:30 GMT

Redirect headers

location: https://yandex.ru/an/mapuid/yeahmobissp/ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067
access-control-allow-origin: *
date: Mon, 04 Mar 2024 08:12:29 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
content-length: 0
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE

GET

/
tech.rtb.mts.ru/ Frame 4249
Redirect Chain

https://kimberlite.io/rtb/sync/yandex
https://solta-sync.rutarget.ru/sync
https://kimberlite.io/rtb/sync/segmento?u=yjGjSBlc1DPU
https://sm.rtb.mts.ru/p?ssp=toptraffic&id=ZeWCbU7axwI
https://vma.mts.ru/match/second?ssp=59&exu=ZeWCbU7axwI
https://tech.rtb.mts.ru/?dsp_uid=4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4&return_url=https%3A%2F%2Fexchange.buzzoola.com%2Fcookiesync%2Fdsp%2Fstream-banner%3Fuid%3D4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4%...

0
0

GET
H2

200

/
an.yandex.ru/mapuid/targetrtbis/ Frame 4249
Redirect Chain

https://match.new-programmatic.com/userbind?src=yandex&pbf=1&gi=1
https://an.yandex.ru/mapuid/targetrtbis/

43 B
80 B

155ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/targetrtbis/

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:29 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:29 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:29 GMT

Redirect headers

Date: Mon, 04 Mar 2024 08:12:29 GMT
Server: nginx/1.22.1
Vary: Origin
Access-Control-Allow-Origin: *
Location: https://an.yandex.ru/mapuid/targetrtbis/
Access-Control-Allow-Credentials: true
Connection: keep-alive
Content-Length: 0

GET pixel
mitdmp.whiteboxdigital.ru/ Frame 4249 0
0

GET
H/1.1

204
No Content

cm
nr.bidderstack.com/yandex/ Frame 4249
Redirect Chain

https://nr.bidderstack.com/yandex/cm?user_id={partner_user_id}
https://nr.bidderstack.com/yandex/cm?user_id={partner_user_id}&pupa=1

0
194 B

110ms
110ms

Image
text/plain

195.201.240.61

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://nr.bidderstack.com/yandex/cm?user_id={partner_user_id}&pupa=1
Protocol: HTTP/1.1
Server: 195.201.240.61 -, , ASN (),
Reverse DNS
Software: nginx /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Access-Control-Allow-Origin: *
Date: Mon, 04 Mar 2024 08:12:30 GMT
Access-Control-Allow-Credentials: true
Server: nginx
Connection: keep-alive
Content-Length: 0

Redirect headers

Location: /yandex/cm?user_id={partner_user_id}&pupa=1
Access-Control-Allow-Origin: *
Date: Mon, 04 Mar 2024 08:12:30 GMT
Access-Control-Allow-Credentials: true
Server: nginx
Connection: keep-alive
Content-Length: 0

GET
H2

200

/
an.yandex.ru/mapuid/ramblerssp/ Frame 4249
Redirect Chain

https://profile.ssp.rambler.ru/sync3.302?pid=188
https://an.yandex.ru/mapuid/ramblerssp/

43 B
80 B

155ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/ramblerssp/

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:29 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:29 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:29 GMT

Redirect headers

date: Mon, 04 Mar 2024 08:12:29 GMT
strict-transport-security: max-age=0
server: nginx
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
location: //an.yandex.ru/mapuid/ramblerssp/
content-type: application/x-javascript
x-passed: 1bal2
content-length: 0

GET
H2

200

ueN5ar3QG4MI.AikABlGOCIWAUQ
an.yandex.ru/mapuid/getintentis/ Frame 4249
Redirect Chain

https://px.adhigh.net/p/cm/yandexssp
https://px.adhigh.net/p/cm/yandexssp?bounced=1
https://an.yandex.ru/mapuid/getintentis/ueN5ar3QG4MI.AikABlGOCIWAUQ

43 B
152 B

156ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/getintentis/ueN5ar3QG4MI.AikABlGOCIWAUQ

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:31 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:31 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:31 GMT

Redirect headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:30 GMT
server: nginx
x-backend-id: f27-ru
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
location: https://an.yandex.ru/mapuid/getintentis/ueN5ar3QG4MI.AikABlGOCIWAUQ
cache-control: no-cache, no-store
access-control-allow-credentials: true
content-length: 0
expires: Thu, 01 Jan 1970 00:00:00 GMT

GET y
rtb-eu-warsaw.intent.ai/um/ Frame 4249 0
0

GET
H2

200

llvQCU7m5dZOrJ6TB1Ii
an.yandex.ru/mapuid/kadamis/ Frame 4249
Redirect Chain

https://s.uuidksinc.net/match/501
https://an.yandex.ru/mapuid/kadamis/llvQCU7m5dZOrJ6TB1Ii

43 B
152 B

155ms
155ms

Image
image/gif

213.180.193.90
TELETECH

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://an.yandex.ru/mapuid/kadamis/llvQCU7m5dZOrJ6TB1Ii

Protocol

Server

213.180.193.90 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

bs.yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:30 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
last-modified: Mon, 04 Mar 2024 08:12:30 GMT
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
content-type: image/gif; charset=utf-8
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
timing-allow-origin: *
x-xss-protection: 1; mode=block
expires: Mon, 04 Mar 2024 08:12:30 GMT

Redirect headers

location: https://an.yandex.ru/mapuid/kadamis/llvQCU7m5dZOrJ6TB1Ii
date: Mon, 04 Mar 2024 08:12:30 GMT
server: nginx/1.23.2
content-length: 0

GET
H2

200

pixel
shopnetic.com/api/rtb/dmp/ Frame 4249
Redirect Chain

https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex
https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex&tc=1

43 B
406 B

146ms
146ms

Image
image/gif

77.244.216.90
SELECTEL

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex&tc=1

Protocol

Server

77.244.216.90 St Petersburg, Russian Federation, ASN49505 (SELECTEL, RU),

Reverse DNS

Software

nginx /

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
Strict-Transport-Security	max-age=31536000
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:30 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
server: nginx
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS"
content-type: image/gif
cache-control: no-cache, private, max-age=0
content-length: 43
x-xss-protection: 1; mode=block
expires: Thu, 01 Jan 1970 03:00:00 MSK

Redirect headers

location: https://shopnetic.com/api/rtb/dmp/pixel?partner=yandex&tc=1
date: Mon, 04 Mar 2024 08:12:30 GMT
server: nginx
content-length: 154
content-type: text/html

GET

4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4
an.yandex.ru/mapuid/mtsdspis/ Frame 4249
Redirect Chain

https://sm.rtb.mts.ru/p?ssp=yandex&id=map
https://vma.mts.ru/match/second?ssp=55
https://tech.rtb.mts.ru/?dsp_uid=4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4&return_url=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fmtsdspis%2F4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4
https://an.yandex.ru/mapuid/mtsdspis/4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4

0
0

GET

ct_sync.php
sync.magnitent.com/fbfli/ Frame 4249
Redirect Chain

https://sonar.semantiqo.com/dmp/scr.php
https://counter.yadro.ru/id127/reff-id.gif?sid=901ac8691b1c4efdb51700facc868035
https://sonar.semantiqo.com/fbfli/data_sess_sync.php?spid=F6EFD1B96E1DAAB8&sid=901ac8691b1c4efdb51700facc868035
https://cdn3.caltat.com/fbfc504c-89b0-4a80-bef4-c8e39daeee6f/sess.php?sid=901ac8691b1c4efdb51700facc868035&spid=F6EFD1B96E1DAAB8&v=
https://sync.magnitent.com/fbfli/ct_sync.php?ct=d8677ef555a14236a701d8b0d1ad7ed1&sonar=901ac8691b1c4efdb51700facc868035&spid=F6EFD1B96E1DAAB8&v=

0
0

GET
H/1.1 200
OK sync.cgi
ssp.adriver.ru/cgi-bin/ Frame 4249 42 B
201 B 695ms
170ms Image
image/gif 81.222.128.217

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=109
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: HTTP/1.1
Security: TLS 1.2, ECDHE_RSA, AES_128_GCM
Server: 81.222.128.217 -, , ASN (),
Reverse DNS
Software: nginx /
Resource Hash: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date: Mon, 04 Mar 2024 08:12:30 GMT
Server: nginx
Connection: keep-alive
Transfer-Encoding: chunked
Content-Type: image/gif

GET
H/1.1 200
OK sync.cgi
ssp.adriver.ru/cgi-bin/ Frame 4249 42 B
201 B 521ms
171ms Image
image/gif 81.222.128.217

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=19
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: HTTP/1.1
Security: TLS 1.2, ECDHE_RSA, AES_128_GCM
Server: 81.222.128.217 -, , ASN (),
Reverse DNS
Software: nginx /
Resource Hash: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

Date: Mon, 04 Mar 2024 08:12:30 GMT
Server: nginx
Connection: keep-alive
Transfer-Encoding: chunked
Content-Type: image/gif

GET /
sync.bumlam.com/ Frame 4249 0
0

GET
H2 204 yandexortb
sync.dmp.otm-r.com/match/ Frame 4249 0
68 B 152ms
152ms Image
text/plain 194.55.244.185
PROCLOUD PROCLOUD...

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://sync.dmp.otm-r.com/match/yandexortb
Requested by: Host: atavi.com
URL: https://atavi.com/share/wj7iyhzocihp
Protocol: H2
Security: TLS 1.2, ECDHE_RSA, AES_128_GCM
Server: 194.55.244.185 Moscow, Russian Federation, ASN34959 (PROCLOUD PROCLOUD MSK, RU),
Reverse DNS
Software: nginx/1.23.2 /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://yastatic.net/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

access-control-allow-origin: *
date: Mon, 04 Mar 2024 08:12:30 GMT
server: nginx/1.23.2

GET

NTdmYWZiZWJkMjk3MTI0Mw
an.yandex.ru/mapuid/gonetisnew/ Frame 4249
Redirect Chain

https://sync.gonet-ads.com/match/yandex?id=[buyerUid]
https://sync.gonet-ads.com/match/yandex?id=%5BbuyerUid%5D&chk=1
https://an.yandex.ru/mapuid/gonetisnew/NTdmYWZiZWJkMjk3MTI0Mw

0
0

GET sync
sync.upravel.com/yandex/ Frame 4249 0
0

GET 0.gif
x01.aidata.io/ Frame 4249 0
0

GET sync
yandex-dmp-sync.rutarget.ru/ Frame 4249 0
0

GET sync
yandex-sync.rutarget.ru/ Frame 4249 0
0

GET
H2 200 unit Show response
atavi.com/advert/ 43 B
298 B 169ms
169ms XHR
application/json 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/advert/unit?place=main-top-text&user=0&browser=chrome&extension=0&_t=0.5082209331878702
Requested by: Host: atavi.com
URL: https://atavi.com/j/jquery/jquery-1.10.2.min.js
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx / PHP/7.2.26
Resource Hash: 56e5c860f33f9352b0c8de4ad712fc651b703bc6a97b72d8865838f06890856f

Request headers

Accept: application/json, text/javascript, */*; q=0.01
Referer: https://atavi.com/share/wj7iyhzocihp
X-Requested-With: XMLHttpRequest
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
server: nginx
response-file: index.php
x-powered-by: PHP/7.2.26
vary: Accept-Encoding
content-type: application/json; charset=utf-8
response-server: web1.atavi.com
cache-control: no-store, no-cache, must-revalidate
process-id: 65e58268c9d91
expires: Thu, 19 Nov 1981 08:52:00 GMT

GET
H2 200 unit Show response
atavi.com/advert/ 42 B
297 B 272ms
272ms XHR
application/json 84.252.139.239
YANDEXCLOUD

General

Check archive.org

Show headers Download Go to

Full URL: https://atavi.com/advert/unit?place=main-bottom-text&user=0&browser=chrome&extension=0&_t=0.543129039823028
Requested by: Host: atavi.com
URL: https://atavi.com/j/jquery/jquery-1.10.2.min.js
Protocol: H2
Security: TLS 1.3, , AES_256_GCM
Server: 84.252.139.239 , Russian Federation, ASN200350 (YANDEXCLOUD, RU),
Reverse DNS
Software: nginx / PHP/7.2.26
Resource Hash: 7740581b5683d9289e2fd7d1feef066be436cc0043a66d04f6b2311fe6f3edd7

Request headers

Accept: application/json, text/javascript, */*; q=0.01
Referer: https://atavi.com/share/wj7iyhzocihp
X-Requested-With: XMLHttpRequest
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

pragma: no-cache
date: Mon, 04 Mar 2024 08:12:24 GMT
server: nginx
response-file: index.php
x-powered-by: PHP/7.2.26
vary: Accept-Encoding
content-type: application/json; charset=utf-8
response-server: web1.atavi.com
cache-control: no-store, no-cache, must-revalidate
process-id: 65e58268c9fec
expires: Thu, 19 Nov 1981 08:52:00 GMT

GET
H2 200 AGSKWxU6qUAZFlCPjKGe6xakyrUEvK_hpgkMevS-zMzzk3rmFlmwoOKNpJihmyVx7mJhN5qTGNaLu5MYRg8HI81HSxB4i4IFJD8shpl72rOrreDt32VaFUIb9REEj7yxoMIMM5oGteoriQ== Show response
fundingchoicesmessages.google.com/f/ 3 KB
2 KB 136ms
135ms Script
application/javascript 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/f/AGSKWxU6qUAZFlCPjKGe6xakyrUEvK_hpgkMevS-zMzzk3rmFlmwoOKNpJihmyVx7mJhN5qTGNaLu5MYRg8HI81HSxB4i4IFJD8shpl72rOrreDt32VaFUIb9REEj7yxoMIMM5oGteoriQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzA5NTM5OTQ0LDc3NTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9hdGF2aS5jb20vc2hhcmUvd2o3aXloem9jaWhwIixudWxsLFtbOCwidnpyTnZIUS1jeW8iXSxbOSwiaXciXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0

Requested by

Host:
URL: /_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.iw.vzrNvHQ-cyo.es5.O/am=wA/d=1/rs=AJlcJMzeYIHv3LKjnmRwZrm9HRsUgPBpqw/m=kernel_loader,loader_js_executable

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

ccc08d9dc8024f4fc43f0c6d158cba482e6e64de858e49c3f0f12d6bb1f00bb7

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'report-sample' 'nonce-l3iBfiMCQXJjLedov-LB_A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:24 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'report-sample' 'nonce-l3iBfiMCQXJjLedov-LB_A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjStHikmII1pBiOO90h-k6ENcyPGNqBWIDjedMFkDM-OcFEycQv_vykkng60smCSDWAuIdPh4sfOums6oAseH66ayRQBzzfDprChA7pc9gDQFin_oZrHFALMTD8aJl2no2gQmvD0xjBgAIIi1m"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: SAMEORIGIN
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
timing-allow-origin: *
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 200 AGSKWxXPr7-QoaKFYkUIVQ5Jv9krQWeoVeNZa3g_mb23dd18ofS2b4q2ECKe-bhvL5Q-nxiZYRrhyLEy6srkwtd_5nDe33TCeepFgxpdxC8kmoybotDGr0svOuAI82w2_PSxAL7a5s7VOA== Show response
fundingchoicesmessages.google.com/f/ 10 KB
5 KB 133ms
132ms Script
application/javascript 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/f/AGSKWxXPr7-QoaKFYkUIVQ5Jv9krQWeoVeNZa3g_mb23dd18ofS2b4q2ECKe-bhvL5Q-nxiZYRrhyLEy6srkwtd_5nDe33TCeepFgxpdxC8kmoybotDGr0svOuAI82w2_PSxAL7a5s7VOA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzA5NTM5OTQ0LDkzNjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuIl0sImh0dHBzOi8vYXRhdmkuY29tL3NoYXJlL3dqN2l5aHpvY2locCIsbnVsbCxbWzgsInZ6ck52SFEtY3lvIl0sWzksIml3Il0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

2e1b05c9564676cd4e2a13c596111b1ca73ec9b0c16252b0dc05d25f7db5cb96

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'report-sample' 'nonce-dp4phL3FzPQeK_nszbvRmg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:25 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'report-sample' 'nonce-dp4phL3FzPQeK_nszbvRmg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjStHikmLw1pBiOO90h-k6ENcyPGNqBWIDjedMFkDM-OcFEycQv_vykkng60smCSDWAuIdPh4sfOums6oAseH66ayRQBzzfDprChA7pc9gDQFin_oZrHFALMTD8bJl2no2gRvnv09iBgAGUi2-"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: SAMEORIGIN
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
timing-allow-origin: *
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET bundle.js
yastatic.net/q/set/s/rsya-tag-users/ Frame 4249 0
0

GET
H2 200 rtrg
vk.com/ 49 B
459 B 161ms
160ms Image
image/gif 87.240.137.164
VKONTAKTE-SPB-AS ...

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://vk.com/rtrg?r=oA050vr4yMnTQ1EWp11ASbjTmiRMvNHTUlgI*m*luUQojjPR7yXUPGbvTo6O/5zMArBCQSc9lp1Y0yAJg1APoS3hMDWXx10zYZ02BFz*p0vfeiO8Laf1cvZlvUKIv9ZJ7L76ZyRbp2xDXT1rTNJC/7MscWYH25OcBZwjlLLZGgM-

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

87.240.137.164 , Russian Federation, ASN47541 (VKONTAKTE-SPB-AS vk.com, RU),

Reverse DNS

srv164-137-240-87.vk.com

Software

kittenx / KPHP/7.4.116077

Resource Hash

2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

Security Headers

Name	Value
Strict-Transport-Security	max-age=15768000

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

x-trace-id: CV7_RIn2XQfn9QRa3tc7E9vQVwMrmg
date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: gzip
x-frontend: front656102
strict-transport-security: max-age=15768000
server: kittenx
x-powered-by: KPHP/7.4.116077
content-type: image/gif
access-control-expose-headers: X-Frontend
cache-control: no-store
content-length: 65
reporting-endpoints: default="https://vk.com/browser_reports?dest=default_reports"

GET
H3 200 sodar Show response
pagead2.googlesyndication.com/getconfig/ 16 KB
12 KB 156ms
156ms XHR
application/json 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20240228&st=env

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/show_ads_impl_fy2021.js

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

05c0e55b3c7042e7d003de7f18ce34458bdf20db405bab857c50ed8578036045

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: br
x-content-type-options: nosniff
server: cafe
content-type: application/json; charset=UTF-8
access-control-allow-origin: *
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
timing-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 12593
x-xss-protection: 0

GET
H2 200 tracker
top-fwz1.mail.ru/ 43 B
1 KB 160ms
160ms Image
image/gif 95.163.52.67
VK-AS

General

Check archive.org

Show headers Download Go to Show image

Full URL

https://top-fwz1.mail.ru/tracker?_=0.5940274142267805;id=2774878;u=https%3A//atavi.com/share/wj7iyhzocihp;st=1709539942750;title=Atavi%20-%20bookmark%20manager;s=1600*1200;vp=1600*1200;touch=0;hds=1;sid=a6a9fbe932520084;ver=60.4.0;tz=-120%2FAsia%2FJerusalem;nt=0/0/1709539940389/////0/765/765/765/1081/818/1081/1386/1446/1388/2361/2361/2366/5706/5706/5708;ct=2833/2838/2838/2854;gl=u;ni=9.3//4g/0/0/;detect=0;lvid=1709539943226%3A1709539946100%3A2%3A4879eda9f408f75509e38d4b56979a97;opts=dl%2Cjst-gtag-ga-ym;visible=true;js=13;e=RT/load;et=1709539946098

Protocol

Security

TLS 1.2, ECDHE_ECDSA, AES_128_GCM

Server

95.163.52.67 , Russian Federation, ASN47764 (VK-AS, RU),

Reverse DNS

top-fwz1.mail.ru

Software

nginx /

Resource Hash

24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

Security Headers

Name	Value
X-Content-Type-Options	nosniff

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
content-length: 43
pragma: no-cache
amp-access-control-allow-source-origin: *
server: nginx
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
content-type: image/gif
access-control-allow-origin: *
accept-ch-lifetime: 86400
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
cache-control: private, no-cache, no-store, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
access-control-allow-headers: *

POST
H2 200 1OOyJVhg0KW200000000U9nJJB_qH5lwaBEjuQJFUpuVOl_0QvdUz3IL0GWyOIAXJa9Ngs957peof382nJCdVPxp4YHU2kBLNWKIhOpDGB8Jn0S29eQPZCaB8Eo5Z39L4DPAnW0z26ilOrks4CDHCFyi8qZJLJ1vbv51Xe7XB-Ci9WQ6kKmWaQLC2rWP6DOoHG7PP...
yandex.ru/an/rtbcount/ 43 B
292 B 165ms
164ms Ping
image/gif 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/an/rtbcount/1OOyJVhg0KW200000000U9nJJB_qH5lwaBEjuQJFUpuVOl_0QvdUz3IL0GWyOIAXJa9Ngs957peof382nJCdVPxp4YHU2kBLNWKIhOpDGB8Jn0S29eQPZCaB8Eo5Z39L4DPAnW0z26ilOrks4CDHCFyi8qZJLJ1vbv51Xe7XB-Ci9WQ6kKmWaQLC2rWP6DOoHG7PPvd-0y4h9e6p5tuUcVIPWQ7uAg_dHI4sXhzCB20dC0DLClGoAmB9gSmWpNEPcK3MCZCvAe2jtSYSpwnKyLjkW_L9PfYlhu9LtWMJFvaTdFWXZcQvQn0EzimAbiS7c3QmCEvWOJh0yXy666-oG7pomVuXYzWTpK9UjnlsRrb0_bd0odcIDQMH3onzWRK111XligQLFLoswfYPy5TMaFuEjWQM2MpFbqo-l-dmXuMsCzW-7jZ2k82jft7QZUPFy-xfhsI36Ng0BU446yiZDjxm56UhB7FtDB-0e0Bpbsmmwt_2MHFPfODBpau8VsS_YvtDqjpSsDXm0plJ3dRM4-pY3zYNBxtmxzl-7JlgVx3pBE00-ca5nvmlZ1iuBiJiu62ynO4Hfayv61WQx7ivGLwQoWdoxGBE1kOLdDEODd2AdU1alS39-8AJyGCdumzEnWLSGFC0vY6zl000?confirmTime=2100000&confirmRatio=1000000&test-tag=239143779041282&actual-format=10&rnd=2713714520015&pcode-active-testids=974087%2C0%2C68%3B968861%2C0%2C22&banner-sizes=eyI3MjA1NzYwNzk0NzI5MDk5MSI6IjMxMngxNTAiLCI3MjA1NzYwNzczNTE2NzMyNSI6IjMxMngxNTAiLCI3MjA1NzYwNzY2NjQyNzg2NyI6IjMxMngxNTAiLCI3MjA1NzYwOTg5NjQ4NzEzNyI6IjMxMngxNTAiLCI3MjA1NzYwOTU5NDIwMzkzNSI6IjMxMngxNTAifQ%3D%3D&width=1580&height=150

Requested by

Host: yastatic.net
URL: https://yastatic.net/partner-code-bundles/977331/ccf08994f2763a3c56ad.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-yandex-req-id: 1709539946215808-547950670832601979-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
x-xss-protection: 1; mode=block
pragma: no-cache
last-modified: Mon, 04 Mar 2024 08:12:26 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:26 GMT

GET
H2 200 sodar2.js Show response
tpc.googlesyndication.com/sodar/ 17 KB
7 KB 351ms
125ms Script
text/javascript 142.250.186.129
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://tpc.googlesyndication.com/sodar/sodar2.js

Requested by

Host: pagead2.googlesyndication.com
URL: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202402270101/show_ads_impl_fy2021.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.186.129 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s07-in-f1.1e100.net

Software

sffe /

Resource Hash

61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 6386
x-xss-protection: 0
server: sffe
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
etag: "1637097310169751"
vary: Accept-Encoding
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-type: text/javascript
cache-control: private, max-age=3000
accept-ranges: bytes
expires: Mon, 04 Mar 2024 08:12:26 GMT

POST
H2 200 WQqejI_zOoVX2Lai0VqC0FDMM1v4emTH1i7aTxpUS8VhTx8wZbvd_pbPEaSlOG0Tfuhqg8K555mVa8R0Sw8QOmO7o-pm1Q63rxU1izniVPPDOuKpc_ApTaAdI2I4WdwGh3MGh4a_IK3K6oIIh4bKwv0LYKII3AgIZiqV3TTQap8YJuk9Dc0RhrAfL2ejC5LjTjZer...
yandex.ru/an/count/ 43 B
142 B 171ms
170ms Ping
image/gif 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/an/count/WQqejI_zOoVX2Lai0VqC0FDMM1v4emTH1i7aTxpUS8VhTx8wZbvd_pbPEaSlOG0Tfuhqg8K555mVa8R0Sw8QOmO7o-pm1Q63rxU1izniVPPDOuKpc_ApTaAdI2I4WdwGh3MGh4a_IK3K6oIIh4bKwv0LYKII3AgIZiqV3TTQap8YJuk9Dc0RhrAfL2ejC5LjTjZerYmHj1vtJGBD7Cm4S11FsC3LC4xpigZLiFiQCWtOqsohD5gQ9ajdQFIxbQ-iE81m2ITm05mw0AqF8ElF0UWq1hE7GcGoqKaNkaGd3DePCvDP3OWMAbONk2M-6esm5Lw9KM72OcV8JPb6PJE3NmGpJPAKIYrMU5t4IZ38bD4osGaKifw2JkkwZeqHqp1c6aPSGQlhCDwPHfYxAbrQh62w9KxSTL00yKz6Ku-6QdwNPStT_yQeLzTr7KkROVmAbtJfHYq6SSuMZGXSeU4ydMLMEPLPfs1bY53-IIqxSFXaQ88Z4_mQcxpuDje-y161Xz_zIjS76Nx3TftEl26hYredqIotgTvIegPu4gvQnr74Ck2-tzbm0VB3Ym8ZyXK0~2=WNyejI_zOoVX2Ldw08qB0CFKJqqGu0acoK1uGJ3v9kH6F3afJw2mxJHgs2dJMJlafRupXZwVovqzs-_SUSEThxAPmI-2cIP9IgKMAxmkOYKOT1pzaN2tozzZbRf9dUtI2PgLahqdX5Xqj5ewEnROuGhGBh1_2z0ki1CfGBl0_bQ0Te4UKGhGBj3ZhW0jZvAjdAy9m1vqTykQn9pk5L3y8uocW5qQ1-Vp3LDHs9PzBitBefGgF5SZzhgkwtgD_aHBIqjBgok0BmnU19woCrkQmjPJq64cb3sKO0ovcONvpZJ2t5Nfqc85qrsMDRaoLQnyCT0Ws0yldSQOVF277st_--57s_VYO8BtjLKqff-bkp3B_ipyqakl30scURJHkwyZtEUyUUdaoqt3Au6UxDUIa7NvSOWZM7Gq-gyCFrq8ePykXD1h_LgsnzdMPtra4nyQ608G_16Auw-LI4LIfs9etAfIGwyuoPWS-iGBPwtWCFoIqjRagVcxAlTp-jrYIZGztW00~2=WNeejI_zOoVX2La30MKB02CKJaqGu0acoK1uGJ3v9kH6F3afJw2mxJHgs2dJMJlafRupXZwVovqzs-_SUSEThxAPmI-2cIP9IgKMAxmkOYKOT1oBdYQd55cSeaYei_LRghgGE24IkXtgQBKMsE4Aq2wmVmlGBh0JAK2xmFvMW7Q17b4Aq2xGuwu0BO-IhPolYRyRacL_86J9wLwdeipvNE7kMyWytXPlTY4Vhx_05Hwk4D7QQsEBMDWqBujFjBIqjBIw0lZ208R0KtPcM-5CHpQ6t9nfXBchqgN52gQxB6joORHHljX7KEw7QIXltmTdIBpxtmo9TzyRGHVnr_PevVqiKsUMIs1-wQMNkTmvZAcqzExh2B6mtfpxilSA6OJqPEyTUplpun1iYalQ_FSA9IWa3afGI9pN-Z2jTqlIPvb9UdXfwQMGhh050HByKOpZyohgiOwTtfpCZIaXsCkhozCOJAGGQprugwTjcTtKsa5cMU8BsZqzJYcToaK0~2=WNqejI_zOoVX2La10NqB02CKJaqGu0acoK1uGJ3v9kH6F3afJw2mxJHgs2dJMJlafRupXZwVovqzs-_SUSEThxAPmI-2cIP9IgKMAxmkOYKOT1nzOn_NaZ36Fjr9PskY3GgPpat9MQoZrTBPiS0ELu1sWVrRW7Q1dKW1sWNsjmAq2_I8Ke1sWHvt1MXvb6pbV4r8eM6gJW6UvNHfR3dB-gqGBLavC0oDVBEB9P50XRh0-Np39CBjQGZYrpRDo-8JBIqjBQsk0BumW27mb9tPpWG2wH53RiuqmjnLwT9Y1TDTbZMvpApuYmDuKlV3AVeUFvZ2uFX_AGoElpU17rvVUm2NriysVp3BzDBRNEuTpkB0wDtN8NvjlTbR-RBV8Z9vvybUZRn7wCSXpAnuYVHVwv6h86z7heAyUQq7Mz9rjkYpNija7UtH57q-21ByqOlZlvL81LIdXXZDsorgyAWlKYFB0Z-ufNE6XtfBuXLZs71O0-xNJfUcNPF4AGLebWa0~2=WNqejI_zOoVX2Ldp07qB02ELKKqGu0acoK1uJJGgbKgbKWc2oJSXD-B9INa2XMsdKSDEcSxQ8I_rdV43QbdAdIRGvtEvisVxdJlVzRNpLJOp-4KmqoH9gTHYXTT5h0I3ZgE99rfQMbfQMZex5jZX2j0ki7yBq2wm4ob0ky3-Le1sWHvH2j0kqEEk02sFagsShub0Dh4CjWK2aDCzIYltVGWpFtYz1ouJgQeV8bBgGdFVimiHjC8fNMbU5dzCSWzhnBIkwxfUep_HqjBIqkf2u2axixNWen4hXjoSQOIvgzAbnGgckonhSfjJl7pn7IRaXxsU4oKV7C0Myly6i8NylIhgfBxs11CbFxiqmYpxC_DBBxqnont7ZCobTrzNEANBcsDysOCBeR1vii_JnHRz-02moA-m_zQuqX9svxUqhkkGLrh2xhpMpnK1ShxpsGAwo8wOMW2GGeP93lmlzN03lAbi5pzR2-DCzdzgPIJ3gTgIUokeTeiFS7J4cB9X73G0~2=WNiejI_zOoVX2La20MqB07FKJaqGu0acoK1uGJ3v9kH6F3afJw2mxJHgs2dJMJlafRupXZwVovqzs-_S-QwldQ-ocS4lWfacIKgb5YkyBc8b67GSjHROuGhGBh1_2z0ki1CfGBl0_bQ0Te4UKGhGBj3ZhW0jZvAjdAy9GsoB5ueWckHqY-1s37u8_mzUxu7hdqHvYgBobkX8TRCNEMQ0Og50dP966qd9A8LLhDAyB3xHqjBIqkeAu0k3ZkNk23nbPxOqXIsJrpc6tDInTqnwLDnC8ynTbIujLZ3TPLcJozpov8irY8Vyi0Ow-8ChI8BzRmL9iE-ziTwlTJuH_ompa5dsJPXVp_JIIo-5vIv3WpLWwIRftTSLLh7oPbhtPGrT6kyysHV94dddnmP0IjQL-M-IbYLpTNvBwxgkHSkIkJglzMz9jeTxD4t24YT60W_y2-FuoXBH1O1B_oMhh2ty-2SYhuzLU18kipY6lZyVWv828N36xpegnIcP1he8~2?stat-id=1&test-tag=239143779041361&banner-sizes=eyI3MjA1NzYwNzk0NzI5MDk5MSI6IjMxMngxNTAiLCI3MjA1NzYwNzczNTE2NzMyNSI6IjMxMngxNTAiLCI3MjA1NzYwNzY2NjQyNzg2NyI6IjMxMngxNTAiLCI3MjA1NzYwOTg5NjQ4NzEzNyI6IjMxMngxNTAiLCI3MjA1NzYwOTU5NDIwMzkzNSI6IjMxMngxNTAifQ%3D%3D&actual-format=10&pcodever=977331&banner-test-tags=eyI3MjA1NzYwNzk0NzI5MDk5MSI6IjI4MTQ3NDk3NjgzMzU4NSIsIjcyMDU3NjA3NzM1MTY3MzI1IjoiMjgxNDc1MjQ1NDAwMTE0IiwiNzIwNTc2MDc2NjY0Mjc4NjciOiIyODE0NzQ5NzY4MzM1ODciLCI3MjA1NzYwOTg5NjQ4NzEzNyI6IjI4MTQ3NTI0OTU5NDQyMCIsIjcyMDU3NjA5NTk0MjAzOTM1IjoiMjgxNDc1MjQ1NDAwMDg1In0%3D&constructor-rendered-assets=eyI3MjA1NzYwNzk0NzI5MDk5MSI6NzEzLCI3MjA1NzYwNzczNTE2NzMyNSI6NzEzLCI3MjA1NzYwNzY2NjQyNzg2NyI6NzEzLCI3MjA1NzYwOTg5NjQ4NzEzNyI6NzA1LCI3MjA1NzYwOTU5NDIwMzkzNSI6NzA1fQ&width=1580&height=150&pcode-active-testids=974087%2C0%2C68%3B968861%2C0%2C22&confirmTime=2100000&confirmRatio=1000000&wmode=0

Requested by

Host: yastatic.net
URL: https://yastatic.net/partner-code-bundles/977331/ccf08994f2763a3c56ad.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-yandex-req-id: 1709539946417704-3099901820918097783-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
x-xss-protection: 1; mode=block
pragma: no-cache
last-modified: Mon, 04 Mar 2024 08:12:26 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/gif
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:26 GMT

GET
H3 200 / Show response
fundingchoicesmessages.google.com/f/AGSKWxXeTMtqsOsjzG43HbFVbcEt5j6joS90dGIqgi851vGpGAsEIhFSSNLJ9RGkrY8AsbT6H7XL9Hx_08Ca8rv2823he_wtB_WMp_j9r4g2XIhxb9xP2WbxDamE73jD5HboC6-ko9gSE2TKoDIXkST4Dvi5gOYZB... 54 B
110 B 124ms
124ms Script
application/javascript 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/f/AGSKWxXeTMtqsOsjzG43HbFVbcEt5j6joS90dGIqgi851vGpGAsEIhFSSNLJ9RGkrY8AsbT6H7XL9Hx_08Ca8rv2823he_wtB_WMp_j9r4g2XIhxb9xP2WbxDamE73jD5HboC6-ko9gSE2TKoDIXkST4Dvi5gOYZBTRL83W3I7ouqM9hysCslJhxWLxWyQZd/_/adv/?rad_/googleads2./momsads.-ad-200x200-/doubleclick/iframe.

Requested by

Host:
URL: /_/mss/boq-content-ads-contributor/_/js/k=boq-content-ads-contributor.ContributorServingResponseClientJs.iw.vzrNvHQ-cyo.es5.O/d=1/exm=kernel_loader,loader_js_executable,web_iab_tcf_v2_signal_executable/ed=1/rs=AJlcJMwTG42wSS4ppphyC4hZsZSk9c1SIw/m=ad_blocking_detection_executable

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

dceaf8c38e5e29a9909b88d2ce4c028efe221013f7407cb073ae5f8dc98167fc

Security Headers

Name	Value
Content-Security-Policy	script-src 'report-sample' 'nonce-l3xVY_5_6Bm-gzx_gV0rtA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: script-src 'report-sample' 'nonce-l3xVY_5_6Bm-gzx_gV0rtA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjStHikmJw1ZBiOO90h-k6ENcyPGNqBWIDjedMFkDM-OcFEycQv_vykkng60smCSDWAuIdPh4sfOums6oAseH66ayRQBzzfDprChA7pc9gDQFin_oZrHFALMTD8apl2no2gQePt01kAgADey2S"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: SAMEORIGIN
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 200 rum.js Show response
pagead2.googlesyndication.com/pagead/js/ 64 KB
24 KB 112ms
112ms Script
text/javascript 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/pagead/js/rum.js?fcd=true

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

cafe /

Resource Hash

b5dc4f8d803ee658ceb08850beca5415ce158fa4e7de8cda97fb44978500fd8a

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:08:29 GMT
content-encoding: br
x-content-type-options: nosniff
age: 237
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 24265
x-xss-protection: 0
server: cafe
etag: 5358710912336251067
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cache-control: public, max-age=3600
timing-allow-origin: *
expires: Mon, 04 Mar 2024 09:08:29 GMT

POST
H3 204 AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA== Show response
fundingchoicesmessages.google.com/el/ 0
29 B 340ms
119ms XHR
text/html 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-gtzgnSXKVhvGIQ0l0ffnGw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-gtzgnSXKVhvGIQ0l0ffnGw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmII0JBiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTD8apl2no2gR0zF_9kAgCMpBF_"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
access-control-max-age: 86400
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
content-type: text/html; charset=utf-8
access-control-allow-origin: https://atavi.com
access-control-allow-methods: POST, GET, OPTIONS
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H2 200 runner.html Show response
tpc.googlesyndication.com/sodar/sodar2/225/ Frame B9EB 13 KB
5 KB 113ms
110ms Document
text/html 142.250.186.129
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html

Requested by

Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.186.129 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s07-in-f1.1e100.net

Software

sffe /

Resource Hash

55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

accept-ranges: bytes
age: 1859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control: public, max-age=31536000
content-encoding: gzip
content-length: 5046
content-type: text/html
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
cross-origin-resource-policy: cross-origin
date: Mon, 04 Mar 2024 07:41:27 GMT
expires: Tue, 04 Mar 2025 07:41:27 GMT
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
server: sffe
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 0

GET
H2 200 aframe Show response
www.google.com/recaptcha/api2/ Frame DA53 829 B
997 B 121ms
119ms Document
text/html 142.250.184.196
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://www.google.com/recaptcha/api2/aframe

Requested by

Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2.js

Protocol

Security

TLS 1.3, , AES_128_GCM

Server

142.250.184.196 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra24s11-in-f4.1e100.net

Software

GSE /

Resource Hash

3b8a765923376afafdc82b04efe8e8f7492894d353d4e7f0a3ffc3f89c1e95bc

Security Headers

Name	Value
Content-Security-Policy	script-src 'report-sample' 'nonce-SFSUN80eNwx6qLaSffunew' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

Referer: https://atavi.com/
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
accept-language: he-IL,he;q=0.9

Response headers

alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cache-control: private, max-age=300
content-encoding: gzip
content-security-policy: script-src 'report-sample' 'nonce-SFSUN80eNwx6qLaSffunew' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-type: text/html; charset=utf-8
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
date: Mon, 04 Mar 2024 08:12:26 GMT
expires: Mon, 04 Mar 2024 08:12:26 GMT
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
server: GSE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	script-src 'report-sample' 'nonce-KN9BsRMiBGx6jHr8ujIriQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: script-src 'report-sample' 'nonce-KN9BsRMiBGx6jHr8ujIriQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmII1pBiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTD8apl2no2gRWH3nQzAwCNghF3"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
access-control-max-age: 86400
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
content-type: text/html; charset=utf-8
access-control-allow-origin: https://atavi.com
access-control-allow-methods: POST, GET, OPTIONS
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-rV3uTR7-PUixCLAt21I8dQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-rV3uTR7-PUixCLAt21I8dQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmLw1JBiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTD8apl2no2gQPLPv9lAgCMthHh"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-max-age: 86400
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://atavi.com
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-GSvSoWP1dD-4AWpz8BOeBA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-GSvSoWP1dD-4AWpz8BOeBA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmLw1JBiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTD8apl2no2gQufTv1lAgCNuxIU"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
access-control-max-age: 86400
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
content-type: text/html; charset=utf-8
access-control-allow-origin: https://atavi.com
access-control-allow-methods: POST, GET, OPTIONS
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 200 AGSKWxWrRQtJnNdmp5US_fCGKK8Gy6xsYike5TI676ZD7-_Y4znpj_GOuyE1gHlNLbHdNbZpG3zs3tSyENYHqD7Li8sMpvv8Mm-kebnlJWy23F7OwOUM3XFMydrXJ0UqDzURuHGWUFUOKA== Show response
fundingchoicesmessages.google.com/f/ 3 KB
2 KB 137ms
136ms Script
application/javascript 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/f/AGSKWxWrRQtJnNdmp5US_fCGKK8Gy6xsYike5TI676ZD7-_Y4znpj_GOuyE1gHlNLbHdNbZpG3zs3tSyENYHqD7Li8sMpvv8Mm-kebnlJWy23F7OwOUM3XFMydrXJ0UqDzURuHGWUFUOKA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzA5NTM5OTQ2LDYzNTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly9hdGF2aS5jb20vc2hhcmUvd2o3aXloem9jaWhwIixudWxsLFtbOCwidnpyTnZIUS1jeW8iXSxbOSwiaXciXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

f29de0657a3c599c26864158ddd9ae6da4b2d05595ca17dda25686161c6d99ae

Security Headers

Name	Value
Content-Security-Policy	script-src 'report-sample' 'nonce-GtSyA_SRyLNEMFlYvuQ0zQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
content-security-policy: script-src 'report-sample' 'nonce-GtSyA_SRyLNEMFlYvuQ0zQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport
content-encoding: gzip
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjStHikmLw0pBiOO90h-k6ENcyPGNqBWIDjedMFkDM-OcFEycQv_vykkng60smCSDWAuIdPh4sfOums6oAseH66ayRQBzzfDprChA7pc9gDQFin_oZrHFALMTD8apl2no2gRfPm_YzAwAFmi2e"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-frame-options: SAMEORIGIN
content-type: application/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
timing-allow-origin: *
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 200 hhT7r2j7IM84IjrHPq4DliozylkjplqSUN38T7c3Pqk.js Show response
pagead2.googlesyndication.com/bg/ Frame B9EB 40 KB
15 KB 111ms
110ms Script
text/javascript 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://pagead2.googlesyndication.com/bg/hhT7r2j7IM84IjrHPq4DliozylkjplqSUN38T7c3Pqk.js

Requested by

Host: tpc.googlesyndication.com
URL: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html

Protocol

Security

QUIC, , AES_128_GCM

Server

172.217.16.130 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra15s46-in-f2.1e100.net

Software

sffe /

Resource Hash

8614fbaf68fb20cf38223ac73eae03962a33ca5923a65a9250ddfc4fb7373ea9

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	0

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://tpc.googlesyndication.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 03:13:23 GMT
content-encoding: br
x-content-type-options: nosniff
age: 17943
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 15753
x-xss-protection: 0
last-modified: Mon, 26 Feb 2024 11:38:00 GMT
server: sffe
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
vary: Accept-Encoding
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-type: text/javascript
cache-control: public, max-age=31536000
accept-ranges: bytes
expires: Tue, 04 Mar 2025 03:13:23 GMT

GET
H3 204 sodar
pagead2.googlesyndication.com/pagead/ Frame DA53 0
0 142ms
142ms Image
text/html 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20240228&jk=1650485024642107&rc=
Protocol: H3
Security: QUIC, , AES_128_GCM
Server: 172.217.16.130 , United States, ASN15169 (GOOGLE, US),
Reverse DNS: fra15s46-in-f2.1e100.net
Software: /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://www.google.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

GET
H3 204 generate_204
tpc.googlesyndication.com/ Frame B9EB 0
10 B 108ms
108ms Image
text/plain 142.250.186.129
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://tpc.googlesyndication.com/generate_204?CPDvlg
Protocol: H3
Security: QUIC, , AES_128_GCM
Server: 142.250.186.129 , United States, ASN15169 (GOOGLE, US),
Reverse DNS: fra24s07-in-f1.1e100.net
Software: /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

date: Mon, 04 Mar 2024 08:12:26 GMT
cross-origin-resource-policy: cross-origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0

POST
H3 204 AGSKWxVB3SLF1Y8Hxc_Sr8Fh5fn776uf8aYZxvJ7YpJT-sYKiYHzyM-Vf7yva8Y_nrhJbzx7Vpy6lYzNDIKXAzlPnfQOe-KkZIKJxCUya_F-aHCpatSef_z64ODP49r9k5KijtCzrQAaWQ== Show response
fundingchoicesmessages.google.com/el/ 0
29 B 122ms
122ms XHR
text/html 142.250.181.238
GOOGLE

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxVB3SLF1Y8Hxc_Sr8Fh5fn776uf8aYZxvJ7YpJT-sYKiYHzyM-Vf7yva8Y_nrhJbzx7Vpy6lYzNDIKXAzlPnfQOe-KkZIKJxCUya_F-aHCpatSef_z64ODP49r9k5KijtCzrQAaWQ==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-SIF10ELe5M9__bj0PsNvWw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:27 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce-SIF10ELe5M9__bj0PsNvWw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmJw15BiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTN8bpl2no2gQ9n5sgCAHodEPw"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-max-age: 86400
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://atavi.com
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

General

Check archive.org

Show headers Download Go to

Full URL

https://fundingchoicesmessages.google.com/el/AGSKWxWAtRtpeKug8neWSUAxXf7Aq1tRtK1dOzyEQbsRipcvsvPjtU1RS3FDptgzfWKCiCipUuE27Xy2XAaV9aPbX0KS6vFF6mIy6pqqC3h6crW-5ZI1QnXpxRBfOXxkD6dZHAQU7RusPA==

Requested by

Protocol

Security

QUIC, , AES_128_GCM

Server

142.250.181.238 , United States, ASN15169 (GOOGLE, US),

Reverse DNS

fra16s56-in-f14.1e100.net

Software

ESF /

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
Content-Security-Policy	require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce--yRpdXd4U2RTJwW41JksSA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
X-Content-Type-Options	nosniff
X-Frame-Options	SAMEORIGIN
X-Xss-Protection	0

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: text/plain

Response headers

date: Mon, 04 Mar 2024 08:12:27 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport, script-src 'report-sample' 'nonce--yRpdXd4U2RTJwW41JksSA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
content-length: 0
x-xss-protection: 0
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjUtHikmLw1pBiqGV4xtQKxIx_XjBxAvEOHw8Wp_QZrAFALMTN8bpl2no2gR-71ssCAHrhEQk"
pragma: no-cache
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
server: ESF
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-max-age: 86400
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: https://atavi.com
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-credentials: true
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
x-frame-options: SAMEORIGIN
expires: Mon, 01 Jan 1990 00:00:00 GMT

GET
H3 204 sodar
pagead2.googlesyndication.com/pagead/ 0
0 143ms
143ms Image
text/html 172.217.16.130
GOOGLE

General

Check archive.org

Show headers Download Go to Show image

Full URL: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240228&jk=1650485024642107&bg=!ODulO3TNAAauXHXJjlw7ADQBe5WfOP-cP8ysH4bbD_tUL2YGgKK2OH0nC0O3nivYB_YbPu-Ipzn8iVz0PGSZ7CJPALy1AgAAAFVSAAAAA2gBBwoAyqW4rE5aAwqAg8MDC-p25T_Ozwg5Qzgi3WhZBFsoHumskHZWX-tDMoT6E6FhGFPAfq7xtp1wpGMQZz8CvHPrzIL9KbIKtYJ_bQTVXr_CSX9zSiAUKTtDlDYS-zx2BTzvHXYeAkHDOWaZ2SpATQ-Aqiuoc5UBoEwdREd9LL9h3-waF_xHZSxtDeEDoiyhk2CP7xoEOmN4_ZBxh_bRKihoickz9gvKaaN-grnclKEeHbtBW2TIAAaABOiqK1jxQyGLwvr-3OAUdaU6NW-ZAra26ZZJZfMJE74O8F3zdhtk5oBb_hCKi1dC_oIKuzE_oqgmnt-G3jbcCBz7quCHEouXirZXVws0HSKAwPcmVM8NfL0M08NjyDNlqD4dJyYc-Ldmv6lumN8nUpM4hix26nH56_RyUpmMZtMAbtA6P3GHNgjQQfcUWJqfok-0ujdG4biGFtAzFPy98iKv_nyOIRYBIrXiIADkSdlXJffl4eojTZ8ThUqkr32MYxPaoyZylFGnX3eWlFbifw_a2CGGLLj45XmCsgL1JMX-WvLNX1GT6-wCkMpeBnfKP-cTHRsfH3z1Wt1DBK9Z5ysvKH71PsoTl2BKWqzmwNh_m-GT0UJvJPsBxDfuEJeKCVmJyE4ENLpvAun9QOV1gJUHxy5KopjWFmYoHjMajujD4zADAMAVmIxvECJQ5l_QSnWf7x6zfIZUhPzEtB6U8JNK0cCq1N6iHudQ0LHPzCUW4sKCnroyczsmeHlPapSWx6NB64wmObImNKwFd0R19-98eM5L5GRg-Co7cocUODDsGPE5zher-Gu2RDNcEZwd1XwriWiS7alcsxkA7e76TrmDLjSXgWBoPe2_fUIOiVvsi7FS_AklzI1yI7fGsFS_1hT4q7ueLZ5xEvDUX75xqTcemppuyViBOmzvEAVr1uhbbupZmXOFaMGdpr1LfWEaKW4xZnjRsj7Wtdy5A8xTVAuVKFzVWyv9NOiYfWhUIrBGwiTABi6Lh904VG7m9VUMOZ-5VEPHqNrZai0x2IV3iKox_MuQdeFQGGB4zP3d0-NxbY9NTL2sFqd20o7Nvvwo80Y8lC-YYbwg61UPFljiR_rEBQNafXnxQQfzX4TY_LWzDms2ozuopHxEMxdlHtuXDCF9lD05N6nnC_VxQA7NnC60KpOMqwjq159ZBJFzXXCi1HLlWLFp2CF8wkur
Protocol: H3
Security: QUIC, , AES_128_GCM
Server: 172.217.16.130 , United States, ASN15169 (GOOGLE, US),
Reverse DNS: fra15s46-in-f2.1e100.net
Software: /
Resource Hash: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Request headers

accept-language: he-IL,he;q=0.9
Referer: https://atavi.com/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36

Response headers

GET
H2 200 WWKejI_zOoVX2LbY0RqF06ETS3w4s8S8Un2D7aGP19DlGcx4avFo10hRJgE6dJATjKDUwZjZBPqTPmB4pHooVTzIwRJvuUyAAFxn8Um_U16Wwj7tOVSW6EbXx7yyOWMLU071Dl4WBc407QUAzAY51HHS7v26m7EY6cC61xky-TheGP9pLM6Ba555E9W9u21UODB7X... Show response
yandex.ru/an/tracking/ 0
183 B 165ms
162ms XHR
text/plain 5.255.255.70
TELETECH

General

Check archive.org

Show headers Download Go to

Full URL

https://yandex.ru/an/tracking/WWKejI_zOoVX2LbY0RqF06ETS3w4s8S8Un2D7aGP19DlGcx4avFo10hRJgE6dJATjKDUwZjZBPqTPmB4pHooVTzIwRJvuUyAAFxn8Um_U16Wwj7tOVSW6EbXx7yyOWMLU071Dl4WBc407QUAzAY51HHS7v26m7EY6cC61xky-TheGP9pLM6Ba555E9W9u21UODB7Xl4IIhn1N1IsnKCXCfdef0jTefE6iQyXDy_8zBGrOobLUAv635CJvg42_EerO1nCy6guNjTrNQ_HdsXfQMbfTGNmXS6B05MFFWpwZ9d9h0P42nMh2znynmuBUuclHYDiXLTYL2niIpY1BMXZT5rdOi9YPyXDcKPbCuDV13DDafHABLPuNSHACCYKqJ9P4u0zwEwMDOaKYj0KjaqTUyUaP-DYnCmOdOOnmtnd6c7kgdHfiOBfbZXnrq41n3yPJJsFzSb0Ws0_l7GQO_B17twq_U-77stV--57s-U2S1l_7GSJlA-jeZ7zB0ucU4mptOLPZdfrNTUnj5c61jCyskYzQNWbq9FzMXAoBZyESGIBZaR_bU6d2o7qquKGUgrVo_Ous_gizpfpHimS2Cmgfx9SgLGghLEmCcmQIFdDg6YeIgLI6G_y1OfhNf70yUmkYjoY8NJ_28TmkMjEBtN4b0edoHoiuom5g10-iLomLtml0AkmILW9~2?action-id=25&viewability-undetermined=0

Requested by

Host: yandex.ru
URL: https://yandex.ru/ads/system/context.js

Protocol

Security

TLS 1.3, , AES_256_GCM

Server

5.255.255.70 , Russian Federation, ASN208398 (TELETECH, RS),

Reverse DNS

yandex.ru

Software

Resource Hash

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Security Headers

Name	Value
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block

Request headers

Referer: https://atavi.com/
accept-language: he-IL,he;q=0.9
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.72 Safari/537.36
Content-Type: application/x-www-form-urlencoded

Response headers

date: Mon, 04 Mar 2024 08:12:29 GMT
content-encoding: gzip
x-content-type-options: nosniff
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-yandex-req-id: 1709539949119765-4424246482174394294-balancer-l7leveler-kubr-yp-vla-13-BAL
content-security-policy-report-only: default-src 'none'; base-uri 'none'; script-src 'unsafe-inline' 'self' yandex.ru an.yandex.ru api-maps.yandex.ru mc.yandex.ru yastatic.net pcode.yads.tech *.maps.yandex.net; style-src 'unsafe-inline' yastatic.net; img-src 'self' data: avatars.mds.yandex.net favicon.yandex.net *.captcha.yandex.net yastatic.net *.maps.yandex.net *.yandex.ru avatars.yads.tech; media-src blob: strm.yandex.ru *.strm.yandex.net; font-src yastatic.net; connect-src 'self' blob: an.yandex.ru yandex.ru mc.yandex.ru yastatic.net log.strm.yandex.ru display.yads.tech display-logs.yads.tech http://an.yandex.ru; frame-src yandexadexchange.net yandex.ru an.yandex.ru; report-uri https://csp.yandex.net/csp?from=yabs-partner-ro&project=yabs&yandex_login=&platform=
x-xss-protection: 1; mode=block
pragma: no-cache
last-modified: Mon, 04 Mar 2024 08:12:29 GMT
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Platform, Sec-CH-UA-Full-Version, Viewport-Width, DPR, Device-Memory, RTT, Downlink, ECT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
access-control-allow-origin: https://atavi.com
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
access-control-allow-credentials: true
timing-allow-origin: *
expires: Mon, 04 Mar 2024 08:12:29 GMT

Failed requests

These URLs were requested, but there was no response received. You will also see them in the list above.

Domain: ysa-static.passport.yandex.ru
URL: https://ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes

Domain: cm.g.doubleclick.net
URL: https://cm.g.doubleclick.net/pixel?google_nid=yandex_llc&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Domain: cm.g.doubleclick.net
URL: https://cm.g.doubleclick.net/pixel?google_nid=yandexcom&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Domain: cm.g.doubleclick.net
URL: https://cm.g.doubleclick.net/pixel?google_nid=yandexru&google_hm=58CF44A2FA4184CF&google_redir=https%3A%2F%2Fan.yandex.ru%2Fresource%2Fspacer.gif

Domain: t.adx.opera.com
URL: https://t.adx.opera.com/sync?vendor=60143&uid=3E4913183DD245CE

Domain: tech.rtb.mts.ru
URL: https://tech.rtb.mts.ru/?dsp_uid=4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4&return_url=https%3A%2F%2Fexchange.buzzoola.com%2Fcookiesync%2Fdsp%2Fstream-banner%3Fuid%3D4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4%26url%3Dhttps%253A%252F%252Fvma.mts.ru%252Fem%253Fnext%253D59%2526em%253D4%2526ssp%253Dbuzzoola%2526id%253D%2524%257BUUID%257D

Domain: mitdmp.whiteboxdigital.ru
URL: https://mitdmp.whiteboxdigital.ru/pixel?id=a&source=yandex&redirect=false&href=https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fqbitis%2F%7Bmiid%7D

Domain: rtb-eu-warsaw.intent.ai
URL: https://rtb-eu-warsaw.intent.ai/um/y

Domain: an.yandex.ru
URL: https://an.yandex.ru/mapuid/mtsdspis/4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4

Domain: sync.magnitent.com
URL: https://sync.magnitent.com/fbfli/ct_sync.php?ct=d8677ef555a14236a701d8b0d1ad7ed1&sonar=901ac8691b1c4efdb51700facc868035&spid=F6EFD1B96E1DAAB8&v=

Domain: sync.bumlam.com
URL: https://sync.bumlam.com/?src=yandex

Domain: sync.bumlam.com
URL: https://sync.bumlam.com/?src=yandex2

Domain: an.yandex.ru
URL: https://an.yandex.ru/mapuid/gonetisnew/NTdmYWZiZWJkMjk3MTI0Mw

Domain: sync.upravel.com
URL: https://sync.upravel.com/yandex/sync

Domain: x01.aidata.io
URL: https://x01.aidata.io/0.gif?pid=YANDEX

Domain: yandex-dmp-sync.rutarget.ru
URL: https://yandex-dmp-sync.rutarget.ru/sync

Domain: yandex-sync.rutarget.ru
URL: https://yandex-sync.rutarget.ru/sync

Domain: yastatic.net
URL: https://yastatic.net/q/set/s/rsya-tag-users/bundle.js

Verdicts & Comments Add Verdict or Comment

115 JavaScript Global Variables

These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.

70 Cookies

Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.

Domain/Path	Expires	Name / Value
yastatic.net/safeframe-bundles/0.83/1-1-0	1970-01-20 18:53:46	Name: afpix Value: 1
yastatic.net/safeframe-bundles/0.83/1-1-0	1970-01-20 19:00:58	Name: pcssspb Value: 1
yastatic.net/safeframe-bundles/0.83/1-1-0	1970-01-20 18:53:46	Name: pcs3 Value: 1
shopnetic.com/api/rtb/dmp	1969-12-31 23:59:59	Name: test_cookie Value: 1
kimberlite.io/rtb/sync	1970-01-20 18:52:19	Name: f Value: https%3A%2F%2Fan.yandex.ru%2Fmapuid%2Fsoltadspis%2FZeWCbU7axwI
kimberlite.io/rtb/sync	1970-01-20 19:02:24	Name: as Value: -WrUeGXlgm04WsfhZeWCbg
kimberlite.io/rtb/sync	1970-01-20 18:52:19	Name: n Value: 2
.atavi.com/	1969-12-31 23:59:59	Name: PHPSESSID Value: ht8ae4adi3kek8a2po1augr9t8
.atavi.com/	1970-01-21 04:28:19	Name: toppage-locale Value: en
.atavi.com/	1970-01-20 18:52:19	Name: toppage-locale-tmp Value: en
.atavi.com/	1970-01-20 19:12:29	Name: sharereg Value: 9376528
.yandex.ru/	1970-01-21 03:37:55	Name: yashr Value: 505551851709539942
.yandex.ru/	1970-01-21 03:37:55	Name: receive-cookie-deprecation Value: 1
.atavi.com/	1970-01-21 04:28:19	Name: _ga Value: GA1.2.858364001.1709539943
.atavi.com/	1970-01-20 18:53:46	Name: _gid Value: GA1.2.1480569227.1709539943
.atavi.com/	1970-01-20 18:52:20	Name: _gat Value: 1
.vk.com/	1970-01-21 03:46:25	Name: remixlang Value: 99
.vk.com/	1970-01-21 03:37:55	Name: remixstlid Value: 9100252823285886182_aTzSCAA0MkIlE2kX1JwfSi6ebgcgP3sj5szMZ9Fhq2g
.yadro.ru/	1970-01-21 03:37:15	Name: FTID Value: 1bvO9d3VI6ul1bvO9d0018-d
.yandex.ru/	1970-01-21 04:28:19	Name: i Value: nhO6nGGfMW2omNhJyuIq9D3WoqIpuHwLF4KWD0/JrCFmQmkaURA9/vQmHsC8WzNxbZo4Bfb4mDBhshHBCSdSo/etxUY=
.yandex.ru/	1970-01-21 04:28:19	Name: yandexuid Value: 4414585481709539943
.atavi.com/	1970-01-21 02:51:51	Name: tmr_lvid Value: 4879eda9f408f75509e38d4b56979a97
.atavi.com/	1970-01-21 02:51:51	Name: tmr_lvidTS Value: 1709539943226
.yadro.ru/	1970-01-21 03:37:15	Name: VID Value: 3dRnQS0Xlkul1bvO9d00190T
.atavi.com/	1970-01-20 21:01:55	Name: _fbp Value: fb.1.1709539943327.1705923673
.atavi.com/	1970-01-21 03:37:55	Name: _ym_uid Value: 1709539943355306397
.atavi.com/	1970-01-21 03:37:55	Name: _ym_d Value: 1709539943
.yandex.ru/	1970-01-21 04:28:19	Name: yuidss Value: 4414585481709539943
.yandex.ru/	1970-01-21 03:37:55	Name: ymex Value: 2024899943.yrts.1709539943
.yandex.ru/	1970-01-21 03:37:55	Name: bh Value: KgI/MA==
.atavi.com/	1970-01-20 18:53:31	Name: _ym_isad Value: 2
mc.yandex.ru/	1969-12-31 23:59:59	Name: yabs-sid Value: 1962370611709539943
.atavi.com/	1970-01-21 04:28:19	Name: _ga_ET1E5EDMLB Value: GS1.2.1709539943.1.0.1709539943.60.0.0
.yandex.ru/	1970-01-20 19:02:24	Name: yabs-vdrf Value: A0
.doubleclick.net/	1970-01-20 18:52:20	Name: test_cookie Value: CheckForPermission
atavi.com/	1970-01-20 18:53:46	Name: tmr_detect Value: 0%7C1709539945543
.weborama.fr/	1970-01-21 04:18:15	Name: AFFICHE_W Value: h@JQlNBdAsmH62
.360yield.com/	1970-01-20 21:01:55	Name: tuuid Value: 8eeb8d20-cbc5-4c94-84c7-2006d34d9fd6
.360yield.com/	1970-01-20 21:01:55	Name: tuuid_lu Value: 1709539946
top-fwz1.mail.ru/	1970-01-21 03:39:22	Name: PVID Value: 1t7uf_3sMhIN00001P2ojC2N:::0-0-0-affdb27-0-affdb2a:CAASEKYUVNXAPxQYtyQoBP-Kr1EaYMgeI3bJJMziiHlPhotDFt8n81yXjDYR3KcDSkZQmX9AI2AWJN1JhfkQfpfrJb4GNyOy9r0N935P4auPuqWZjlY9Hr4RMS8XG-yYML4-F7sy1sDgRCYB8nFUVDuhyf8gjw
.mail.ru/	1970-01-21 03:39:22	Name: VID Value: 1t7uf_3sMhIN00001P2ojC2N:::0-0-0-affdb27-0-affdb2a:CAASEKYUVNXAPxQYtyQoBP-Kr1EaYMgeI3bJJMziiHlPhotDFt8n81yXjDYR3KcDSkZQmX9AI2AWJN1JhfkQfpfrJb4GNyOy9r0N935P4auPuqWZjlY9Hr4RMS8XG-yYML4-F7sy1sDgRCYB8nFUVDuhyf8gjw
.demdex.net/	1970-01-20 23:11:31	Name: demdex Value: 24041113476035570014096506143446297575
.dpm.demdex.net/	1970-01-20 23:11:31	Name: dpm Value: 24041113476035570014096506143446297575
.atavi.com/	1970-01-21 03:37:55	Name: FCNEC Value: %5B%5B%22AKsRol-_r7OiKi7qEQrZbEQt6NJi_hxDoB8viLSNw3RCyu6kYym2QyYuna-LD7ThobmUNVEnQq5BX4E2Ko9h9rSPHYvhFfDi7CmMLuXESlc17z1ojh4O89UENcDd3VGTmTseOS43Lroh_fHTCO0V4zZFQYcKzUjKwQ%3D%3D%22%5D%5D
.betweendigital.com/	1970-01-21 03:37:55	Name: dc Value: lux1
.betweendigital.com/	1970-01-21 03:37:55	Name: ss Value: 1
.betweendigital.com/	1970-01-21 03:37:55	Name: tuuid Value: 690eacaf-9699-5240-86e1-2687e304a4ec
.hybrid.ai/	1970-01-21 03:37:55	Name: vid Value: 8d677794387ee6b91042
.dmg.digitaltarget.ru/	1970-01-21 04:28:19	Name: viuserid Value: G8LfKj1dEzDvVgd7iE.G
.dsp.mpartner.digital/	1970-01-21 03:37:55	Name: dmp Value: TLdEcJIMlAXzAnZZXNXLSHnqkKeonriA
.acint.net/	1970-01-20 18:52:20	Name: test_cookie Value: CheckForPermission
.acint.net/	1970-01-21 04:28:19	Name: aid Value: fwAACGXlgmyGaRebbT2zAhpgF0dzoaEBglmoKRoAEOAwXxHT
.betweendigital.com/	1970-01-21 03:37:55	Name: ut Value: ZeWCbAAAs7CpwZiU8bYrJtLchx3F9Wt4V-V6zw==
.tns-counter.ru/	1970-01-21 03:37:55	Name: guid Value: C2E9650165E5826CX1709539948
.acint.net/	1970-01-20 19:35:31	Name: cSyncDp14v4 Value: 1709539948
.bidswitch.net/	1970-01-21 03:37:55	Name: tuuid Value: a137a0e1-92d0-4b99-9bff-ac7904af4d93
.bidswitch.net/	1970-01-21 03:37:55	Name: c Value: 1709539948
.bidswitch.net/	1970-01-21 03:37:55	Name: tuuid_lu Value: 1709539948
.ssp-rtb.sape.ru/	1970-01-21 04:28:19	Name: sspuid Value: CkIDHWXlgmwU0gD35AhBAq9U7hLo5uFgqRfYYd/+GLdS2zup
.csync.loopme.me/	1970-01-20 21:04:48	Name: viewer_token Value: 9f1c4237-f3a6-49fc-85df-263520090726
kimberlite.io/	1970-01-20 21:01:55	Name: u Value: ZeWCbU7axwI~XFRD8uCHTbo7zlO-ZNJ6v-NhFVs
.targetads.io/	1970-01-21 03:37:55	Name: _TADUID Value: 2599623751526948341
.ymmobi.com/	1970-01-21 03:30:43	Name: ym_user_cookie Value: ym_user_a753c7e6-a14a-4570-8472-3a03cd4a6067
.uuidksinc.net/	1970-01-21 03:37:55	Name: jcsuuid Value: llvQCU7m5dZOrJ6TB1Ii
.rutarget.ru/	1970-01-20 23:11:31	Name: userId Value: yjGjSBlc1DPU
.mts.ru/	1970-01-21 03:24:58	Name: dspid Value: 4b6d9c98-1b42-4bd3-a8ae-4b1bc53794c4
.mts.ru/	1970-01-21 03:24:58	Name: reset_cookie Value: 1
shopnetic.com/	1970-01-21 04:28:19	Name: shuniq Value: J4I9YLDquku1HQD0aSpHmW-c1rA
.sonar.semantiqo.com/	1970-01-21 04:28:19	Name: semantiqo_a Value: 901ac8691b1c4efdb51700facc868035
.sonar.semantiqo.com/	1970-01-21 03:48:00	Name: check Value: 82a9bb98ae424ccc8fbe2f9d479caed8

373 Console Messages

A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.

Source	Level	URL Text
security	warning	URL: https://atavi.com/j/toppage-core.js?v=9bc90c112(Line 87) Message: document.domain mutation is ignored because the surrounding agent cluster is origin-keyed.
security	warning	URL: https://atavi.com/j/toppage-core.js?v=9bc90c112(Line 98) Message: document.domain mutation is ignored because the surrounding agent cluster is origin-keyed.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://connect.facebook.net/signals/config/380640435658761?v=2.9.148&r=stable&domain=atavi.com&hme=20c913bdcd4be51a752120153aa5caaecb3ee86c7f26cf737846e40b202aba68&ex_m=62%2C106%2C94%2C98%2C53%2C3%2C88%2C61%2C14%2C86%2C79%2C44%2C46%2C150%2C153%2C164%2C160%2C161%2C163%2C25%2C89%2C45%2C68%2C162%2C145%2C148%2C157%2C158%2C165%2C115%2C13%2C43%2C169%2C168%2C117%2C16%2C29%2C32%2C1%2C36%2C57%2C58%2C59%2C63%2C83%2C15%2C12%2C85%2C82%2C81%2C95%2C97%2C31%2C96%2C26%2C22%2C146%2C149%2C124%2C24%2C9%2C10%2C11%2C5%2C6%2C21%2C19%2C20%2C49%2C54%2C56%2C66%2C90%2C23%2C67%2C8%2C7%2C71%2C41%2C18%2C92%2C91%2C17%2C4%2C73%2C80%2C72%2C78%2C40%2C39%2C77%2C33%2C35%2C76%2C48%2C74%2C28%2C37%2C65%2C0%2C84%2C75%2C2%2C30%2C55%2C34%2C93%2C38%2C70%2C60%2C99%2C52%2C51%2C27%2C87%2C50%2C47%2C42%2C69%2C64%2C100(Line 80) Message: Unrecognized feature: 'attribution-reporting'.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
network	error	URL: https://ysa-static.passport.yandex.ru/static/1/d959d7e39d5067fad30d9c06204866e9/d.png?ex=yes Message: Failed to load resource: net::ERR_NAME_NOT_RESOLVED
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.
other	warning	URL: https://atavi.com/share/wj7iyhzocihp Message: Third-party cookie will be blocked. Learn more in the Issues tab.

Indicators

This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.

acint.net
ad.mail.ru
ads.betweendigital.com
an.yandex.ru
analytics.google.com
atavi.com
avatars.mds.yandex.net
cm.g.doubleclick.net
cm.tns-counter.ru
connect.facebook.net
counter.yadro.ru
cr.frontend.weborama.fr
csync.loopme.me
dm.hybrid.ai
dmg.digitaltarget.ru
dpm.demdex.net
dsp.mpartner.digital
euw-ice.360yield.com
exchange.buzzoola.com
eye.targetads.io
favicon.yandex.net
fundingchoicesmessages.google.com
googleads.g.doubleclick.net
gw-iad-bid.ymmobi.com
im.bluevoox.com
match.360yield.com
match.new-programmatic.com
mc.yandex.ru
mitdmp.whiteboxdigital.ru
nr.bidderstack.com
pagead2.googlesyndication.com
profile.ssp.rambler.ru
px.adhigh.net
px.arcspire.io
rgw.atavi.com
rtb-eu-warsaw.intent.ai
s.uuidksinc.net
shopnetic.com
ssp-rtb.sape.ru
ssp.adriver.ru
stats.g.doubleclick.net
sync.adkernel.com
sync.bumlam.com
sync.dmp.otm-r.com
sync.magnitent.com
sync.upravel.com
t.adx.opera.com
tech.rtb.mts.ru
top-fwz1.mail.ru
tpc.googlesyndication.com
vk.com
www.facebook.com
www.google-analytics.com
www.google.co.il
www.google.com
www.googletagmanager.com
x.bidswitch.net
x01.aidata.io
yandex-dmp-sync.rutarget.ru
yandex-sync.rutarget.ru
yandex.digital-services.solutions
yandex.ru
yastatic.net
ysa-static.passport.yandex.ru
an.yandex.ru
cm.g.doubleclick.net
mitdmp.whiteboxdigital.ru
rtb-eu-warsaw.intent.ai
sync.bumlam.com
sync.magnitent.com
sync.upravel.com
t.adx.opera.com
tech.rtb.mts.ru
x01.aidata.io
yandex-dmp-sync.rutarget.ru
yandex-sync.rutarget.ru
yastatic.net
ysa-static.passport.yandex.ru
142.250.181.238
142.250.184.196
142.250.185.174
142.250.186.129
142.250.186.136
157.240.0.6
157.240.253.35
159.89.214.102
167.235.33.115
172.217.16.130
172.217.18.2
172.217.18.99
178.154.131.217
185.15.175.144
185.98.54.153
188.42.191.196
193.232.148.134
193.3.184.130
193.3.184.217
194.226.130.227
194.55.244.185
195.201.240.61
213.180.193.90
216.239.32.181
217.65.2.150
34.111.129.221
35.177.4.157
35.214.149.91
35.214.164.50
37.230.131.16
47.253.61.56
5.255.255.70
51.250.100.50
51.250.77.168
52.208.220.232
52.45.175.185
63.34.206.49
64.233.184.156
77.244.216.90
77.245.57.72
77.88.21.36
81.222.128.217
84.252.139.239
84.38.189.213
87.240.137.164
87.250.247.183
87.250.250.119
88.212.201.198
91.192.149.30
95.163.41.56
95.163.52.67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atavi.com Open in urlscan Pro 84.252.139.239 Public Scan

Summary

urlscan.io Verdict: No classification

Domain & IP information

Screenshot Live screenshot Full Image

Page Title

Detected technologies

Page Statistics

189 Requests

76 %HTTPS

0 %IPv6

51 Domains

64 Subdomains

37 IPs

8 Countries

2002 kBTransfer

4398 kBSize

70 Cookies

6 Outgoing links

Redirected requests

189 HTTP transactions Everything HTML Script AJAX CSS Image Expand all 0 data transactions

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

Response headers

Request headers

atavi.com Open in urlscan Pro
84.252.139.239 Public Scan

Screenshot
Live screenshot

Full Image

189
Requests

76 %
HTTPS

0 %
IPv6

51
Domains

64
Subdomains

37
IPs

8
Countries

2002 kB
Transfer

4398 kB
Size

70
Cookies

189 HTTP transactions
0 data transactions