Report - divv.ws/divv.html

Report Overview

Visitedpublic

2025-07-26 04:50:06

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
mc.yandex.com	26236	1998-09-24	2014-03-01	2025-07-25	4.9 kB	6.4 kB	77.88.21.119
mc.yandex.ru	2672	1997-09-23	2012-05-21	2025-07-20	735 B	415 kB	77.88.21.119
top-fwz1.mail.ru	8936	1997-09-27	2013-04-18	2025-07-20	1.1 kB	4.6 kB	95.163.52.67
d8.c0.bc.a1.top.mail.ru	unknown	1997-09-27	2025-07-26	2025-07-26	429 B	2.0 kB	95.163.52.67
divv.ws	unknown	unknown	No data	No data	3.0 kB	353 kB	195.24.68.30

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-07-26 04:49:44	medium	195.24.68.30	Client IP	ET INFO TLS Handshake Failure
2025-07-26 04:49:44	medium	195.24.68.30	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	divv.ws/divv.html	ScriptElement	469 B	2025-07-26	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-26 Last Seen 2025-07-26 Times Seen 1 Size 469 B (469 bytes) MD5 a4783e521b97ffb1feeef278b0612090 SHA1 7fc351a3bdc01cf2b04b157f3c7143de13cdf464 SHA256 b029c1c8ecad49f709e0331e96f3d60985e11f56e6b9d5b41974a6f302234b21 Format Code Loading...

	mc.yandex.ru/metrika/watch.js	ScriptElement	207 kB	2025-07-25	2025-07-26
URL mc.yandex.ru/metrika/watch.js IP / ASN 77.88.21.119 #13238 YANDEX LLC Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-25 Last Seen 2025-07-26 Times Seen 8 Size 207 kB (206740 bytes) MD5 2128737dc74e0a665532f8944547cc67 SHA1 d9a55651db4680181cce26cc78718b58997619c8 SHA256 863b2fec01d75f264fedf024a32b22c58e1b47e43b949ede50d94ad2c8dcc1f8 Format Code Loading...

	divv.ws/divv.html	ScriptElement	37 B	2025-07-26	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-26 Last Seen 2025-07-26 Times Seen 1 Size 37 B (37 bytes) MD5 7dd6765793ba0a2b0bfed5bdf87a10e1 SHA1 6b2d025c89b89888f093dbeaccdbde08256ed1aa SHA256 4ac08b4dc8dc5db625bd2adb2647f927a1fdec7b2f10b2b529647680fb418087 Format Code Loading...

	divv.ws/divv.html	ScriptElement	64 B	2023-03-07	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-07-26 Times Seen 93 Size 64 B (64 bytes) MD5 7af141fb33dc5c171247b5169faaf858 SHA1 6c502c0d5bb8629e702c4263aa04f9cc7476442d SHA256 651b90d1bd0c40908e7b7bf9affd111aef8b1597fe1e011917fc77ae8b96eb0f Format Code Loading...

	divv.ws/divv.html	ScriptElement	49 B	2023-03-07	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-07-26 Times Seen 97 Size 49 B (49 bytes) MD5 989e33089513bebbfabec6c6975e412a SHA1 cd044e7658960f6da21b3aa0bf2f9d8d6a774e0d SHA256 2e7ea251a9bdedb3a9bbad2953f88e5dfbf6a4e06ea6cc6c108cdf3f8a59ab87 Format Code Loading...

	divv.ws/divv.html	ScriptElement	106 B	2023-03-07	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-07-26 Times Seen 96 Size 106 B (106 bytes) MD5 b757090d3de27315d053d09d6d4053f6 SHA1 43672d825eed040a610b6b55bead1adffbd1d8f9 SHA256 133dac5c5332339ba69e48255d198b1a04e79e1b9817797a778f13aaa87b6bdb Format Code Loading...

	divv.ws/divv.html	ScriptElement	16 B	2023-03-07	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-07-26 Times Seen 97 Size 16 B (16 bytes) MD5 4864a59e34a3a0c0dde663723984cc54 SHA1 7c99d2af1bee6c83c9e6c2384dd243b457d5ede7 SHA256 aaaf8d66ca78fe8ba5bcce8788552e35344074b8ef77d569c553bbb77693d8f7 Format Code Loading...

	divv.ws/divv.html	ScriptElement	291 B	2025-07-26	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-26 Last Seen 2025-07-26 Times Seen 1 Size 291 B (291 bytes) MD5 15c5a91a30c47cc51e286e97882f06f0 SHA1 5fd83cd84444a50cb598eda8e707d1dede109d68 SHA256 086e6b31044eec01cd47e8414e8657a7e7bca032a4e39bc864ce2103a7301d19 Format Code Loading...

	divv.ws/divv.html	ScriptElement	37 B	2023-03-11	2025-07-26
URL divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-11 Last Seen 2025-07-26 Times Seen 79 Size 37 B (37 bytes) MD5 3b7b546cd145521146dfcaf26f659a35 SHA1 b6956259d5c1f7d93024c15b38d6efcf7507ccec SHA256 598c871d90e655ecb13e1bf2ea9aa9a76aea3c33821bd2f8e489fc6e837e0862 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	2556079f654c0ee9669f6d80cb12cd5a	DocumentWrite	13 B	2025-07-26	2025-07-26
Introduced by DocumentWrite First Seen 2025-07-26 Last Seen 2025-07-26 Times Seen 1 Size 13 B (13 bytes) MD5 2556079f654c0ee9669f6d80cb12cd5a SHA1 b559a4c7f0815c3fcd6b3242b78f1ce281d714a4 SHA256 1b536db8fe0d0da24c2dd61dc1fe5ee2c3b3a73ca54787148ff3633c292d284c Format Code Loading...

	65cbcdf56b1962dd07517100d5632c3b	DocumentWrite	249 B	2025-07-26	2025-07-26
Introduced by DocumentWrite First Seen 2025-07-26 Last Seen 2025-07-26 Times Seen 1 Size 249 B (249 bytes) MD5 65cbcdf56b1962dd07517100d5632c3b SHA1 45ec4571bc5b7033684eb8a36cfbd0ac32e9b093 SHA256 0b8cbb2e4848a4516cdb9d4fee187bfd08dd5c3390a635e07025269caeda97bf Format Code Loading...

	a0bb1d01b2e13f9b8a2e2421576f190e	DocumentWrite	5 B	2023-03-07	2025-07-30
Introduced by DocumentWrite First Seen 2023-03-07 Last Seen 2025-07-30 Times Seen 441 Size 5 B (5 bytes) MD5 a0bb1d01b2e13f9b8a2e2421576f190e SHA1 eb9f842bdd238587dd0b382ed6110d9f8d642950 SHA256 454d2afd4b550c2fa634518d303c473a5ca5605ff9aec05eeef33b88fd4cbcd9 Format Code Loading...

HTTP Transactions (17)

	URL	IP	Response	Size
	GET mc.yandex.com/watch/10065979/1?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%280%29cdl%28na%29eco%28327680%29ti%281%29&redirnss=1	77.88.21.119	200 OK	622 B
URL GET HTTPS mc.yandex.com/watch/10065979/1?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%280%29cdl%28na%29eco%28327680%29ti%281%29&redirnss=1 IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeJSON text data First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size622 B (622 bytes) MD5f4d07c6abcc391e613f51bdd4b232799 SHA1eeea18dc024d837c12883a797ccad891213bc360 SHA2562d4141f10339246d70344b98dddd42ed28469bf823ff4d84a020ade381df5f6e Certificate Info IssuerGlobalSign nv-sa Subjectmc.yandex.ru Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64 ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT HTTP Headers GET /watch/10065979/1?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%280%29cdl%28na%29eco%28327680%29ti%281%29&redirnss=1 HTTP/1.1 Host: mc.yandex.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://divv.ws Referer: http://divv.ws/ DNT: 1 Connection: keep-alive Cookie: yabs-sid=2457636051753505386; i=0n1SvkIFsP2+lEMtv1tadcrZVv6dKexGH0xw3wOjeLtf0+U4HdedCLFVGHHh+CyxIc5dSklkmHTsR35xW9RuLgtsOy4=; yandexuid=3243587331753505386; yuidss=3243587331753505386; ymex=1785041386.yrts.1753505386#1785041386.yrtsi.1753505386; bh=YOq8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-length: 622 x-xss-protection: 1; mode=block last-modified: Sat, 26-Jul-2025 04:49:46 GMT strict-transport-security: max-age=31536000 access-control-allow-credentials: true content-type: application/json; charset=utf-8 cache-control: private, no-cache, no-store, must-revalidate, max-age=0 x-content-type-options: nosniff pragma: no-cache accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA expires: Sat, 26-Jul-2025 04:49:46 GMT access-control-allow-origin: http://divv.ws X-Firefox-Spdy: h2

	GET mc.yandex.ru/metrika/watch.js	77.88.21.119	302 Moved temporarily	207 kB
URL GET HTTP mc.yandex.ru/metrika/watch.js IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648441 Size207 kB (206743 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /metrika/watch.js HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Moved temporarily Set-Cookie: bh=YOm8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.ru; Expires=Sun, 30 Aug 2026 04:49:45 GMT; SameSite=None; Secure Location: https://mc.yandex.ru/metrika/watch.js Content-Length: 0`

	GET top-fwz1.mail.ru/counter?id=1837286;t=210;js=13;r=;j=false;s=1280*1024;d=24;rand=0.0007989446427295599	95.163.52.67	302 Found	797 B
URL GET HTTPS top-fwz1.mail.ru/counter?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 IP / ASN 95.163.52.67 #47764 LLC VK Requested byhttp://divv.ws/divv.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648441 Size797 B (797 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGlobalSign nv-sa Subject.mail.ru FingerprintA7:18:98:D5:D1:A2:CD:F2:24:03:81:71:3A:65:D1:77:70:36:B0:D7 ValidityMon, 21 Oct 2024 10:39:44 GMT - Sat, 22 Nov 2025 10:39:43 GMT HTTP Headers `GET /counter?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 HTTP/1.1 Host: top-fwz1.mail.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://divv.ws/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found server: nginx date: Sat, 26 Jul 2025 04:49:45 GMT content-length: 0 location: https://top-fwz1.mail.ru/counter2?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 set-cookie: FTID=1RMYgQ0tkIIY:1753505385:1837286:::; path=/; expires=Mon, 27-Jul-26 04:49:45 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure tmr_lvid=1c0185e51be562b742c970864530380f; path=/; expires=Mon, 27-Jul-26 04:49:45 GMT; domain=.mail.ru; Secure tmr_lvidTS=1753505385000; path=/; expires=Mon, 27-Jul-26 04:49:45 GMT; domain=.mail.ru; Secure access-control-allow-origin: access-control-allow-credentials: true access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS access-control-allow-headers: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin timing-allow-origin: * x-content-type-options: nosniff p3p: CP="NOI DSP COR NID CUR PSA OUR NOR" cache-control: private, no-cache, no-store, max-age=0 pragma: no-cache accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version accept-ch-lifetime: 86400 X-Firefox-Spdy: h2

	GET d8.c0.bc.a1.top.mail.ru/counter?id=1837286;t=210;js=13;r=;j=false;s=1280*1024;d=24;rand=0.0007989446427295599	95.163.52.67	302 Moved Temporarily	797 B
URL GET HTTP d8.c0.bc.a1.top.mail.ru/counter?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 IP / ASN 95.163.52.67 #47764 LLC VK Requested byhttp://divv.ws/divv.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648441 Size797 B (797 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /counter?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 HTTP/1.1 Host: d8.c0.bc.a1.top.mail.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 302 Moved Temporarily Server: nginx Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 Set-Cookie: tmr_lvid=70a7cc11391acc607e1f1a301f72aa90; path=/; expires=Mon, 27-Jul-26 04:49:45 GMT; domain=.mail.ru tmr_lvidTS=1753505385000; path=/; expires=Mon, 27-Jul-26 04:49:45 GMT; domain=.mail.ru Location: https://top-fwz1.mail.ru/counter?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 Access-Control-Allow-Origin: Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS Access-Control-Allow-Headers: * AMP-Access-Control-Allow-Source-Origin: * Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff P3P: CP="NOI DSP COR NID CUR PSA OUR NOR" Cache-Control: private, no-cache, no-store, max-age=0 Pragma: no-cache Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version Accept-CH-Lifetime: 86400

	GET divv.ws/divv.html	195.24.68.30	200 OK	14 kB
URL User Request GET HTTP divv.ws/divv.html IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byN/A Resource Info File typeHTML document, Unicode text, UTF-8 text, with very long lines (1034) First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size14 kB (13498 bytes) MD5fde71dd9d92104f00459999a7006008e SHA1786c0643be4ee904b17d348b02481b0e2720fa58 SHA25657137fdd45367216a86b0cb5b97f4734dbe0ae68748ee4e8e82720878f19aea8 HTTP Headers `GET /divv.html HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:44 GMT Content-Type: text/html; charset=windows-1251 Content-Length: 13498 Connection: keep-alive Accept-Ranges: bytes`

	GET divv.ws/mm_arrow.gif	195.24.68.30	200 OK	74 B
URL GET HTTP divv.ws/mm_arrow.gif IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeGIF image data, version 89a, 4 x 7 First Seen2023-06-11 Last Seen2025-07-26 Times Seen3 Size74 B (74 bytes) MD5ef1327de2b4d4f1f7c71b9fd4deffbf4 SHA1c6e33354918f6532e7e91a2b7376bd2860c6ace6 SHA25670056428119760535a04f7e2db6f100f4d3e9c545e52e576ee0b75a9bc13faf3 HTTP Headers `GET /mm_arrow.gif HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/mm_travel2.css Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Type: image/gif Content-Length: 74 Connection: keep-alive Last-Modified: Fri, 14 Mar 2008 17:36:11 GMT ETag: "47dab78b-4a" Accept-Ranges: bytes`

	GET divv.ws/div.jpg	195.24.68.30	200 OK	231 kB
URL GET HTTP divv.ws/div.jpg IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5], baseline, precision 8, 2456x1380, components 3 First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size231 kB (231411 bytes) MD51123fe61b8d7133fc27af1d4028c5f27 SHA1da4d658bb32a97b27f06977a1d766245f532bf89 SHA256c495f2f9ee0bcda90cf41e85868d59cddebdc5658c3f8e69316977989cfa62e7 HTTP Headers `GET /div.jpg HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/divv.html Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Type: image/jpeg Content-Length: 231411 Connection: keep-alive Last-Modified: Wed, 16 Nov 2011 10:29:38 GMT ETag: "4ec39092-387f3" Accept-Ranges: bytes`

	GET divv.ws/divv.html	0.0.0.0		0 B
URL User Request GET HTTP divv.ws/divv.html IP / ASN 0.0.0.0 #0 Requested byN/A Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648441 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /divv.html HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	GET divv.ws/mm_travel2.css	195.24.68.30	200 OK	2.1 kB
URL GET HTTP divv.ws/mm_travel2.css IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeASCII text, with CRLF line terminators First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size2.1 kB (2084 bytes) MD5b5076cdc96d8ec0c30b251908288d196 SHA187fdc0d2e4edaf785eca15ec2dbb8b2accb930d5 SHA25699a755c73cc1901d73a2262d189f82b685b27c48a5d2b104ccd1e9b3e0208073 HTTP Headers `GET /mm_travel2.css HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/divv.html Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Type: text/css Content-Length: 2084 Connection: keep-alive Last-Modified: Fri, 14 Mar 2008 17:36:52 GMT ETag: "47dab7b4-824" Accept-Ranges: bytes`

	GET mc.yandex.ru/metrika/watch.js	77.88.21.119	200 OK	207 kB
URL GET HTTPS mc.yandex.ru/metrika/watch.js IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeJavaScript source, ASCII text, with very long lines (675) First Seen2025-07-25 Last Seen2025-07-26 Times Seen8 Size207 kB (206743 bytes) MD52128737dc74e0a665532f8944547cc67 SHA1d9a55651db4680181cce26cc78718b58997619c8 SHA256863b2fec01d75f264fedf024a32b22c58e1b47e43b949ede50d94ad2c8dcc1f8 Certificate Info IssuerGlobalSign nv-sa Subjectmc.yandex.ru Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64 ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT HTTP Headers `GET /metrika/watch.js HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://divv.ws/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-length: 70306 strict-transport-security: max-age=31536000 content-encoding: br expires: Sat, 26 Jul 2025 05:49:45 GMT etag: "68793b7d-112a2" date: Sat, 26 Jul 2025 04:49:45 GMT cache-control: max-age=3600 last-modified: Thu, 17 Jul 2025 18:05:49 GMT access-control-allow-origin: * timing-allow-origin: * accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA content-type: application/javascript set-cookie: bh=YOm8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.ru; Expires=Sun, 30 Aug 2026 04:49:45 GMT; SameSite=None; Secure X-Firefox-Spdy: h2

	GET mc.yandex.com/watch/10065979?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(0)cdl(na)eco(327680)ti(1)	77.88.21.119	302 Found	622 B
URL GET HTTPS mc.yandex.com/watch/10065979?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(0)cdl(na)eco(327680)ti(1) IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-04 Times Seen5648441 Size622 B (622 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGlobalSign nv-sa Subjectmc.yandex.ru Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64 ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT HTTP Headers GET /watch/10065979?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)rcm(0)cdl(na)eco(327680)ti(1) HTTP/1.1 Host: mc.yandex.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://divv.ws/ Origin: http://divv.ws DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found expires: Sat, 26-Jul-2025 04:49:46 GMT location: /watch/10065979/1?wmode=7&page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726044945%3Aet%3A1753505386%3Ac%3A1%3Arn%3A363917104%3Arqn%3A1%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Afp%3A559%3Awv%3A2%3Ads%3A0%2C43%2C59%2C1%2C%2C0%2C%2C369%2C%2C%2C%2C%2C%3Aco%3A0%3Acpf%3A1%3Ans%3A1753505384672%3Arqnl%3A1%3Ast%3A1753505386%3At%3A%D0%90%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%94%D0%98%D0%92-1%2C%20%D0%94%D0%98%D0%92-2%2C%20%D0%94%D0%98%D0%92-3%2C%20%D0%94%D0%98%D0%92-4%20%D0%9E%D0%BF%D1%82%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%B8%D0%B9%20%D0%B0%D0%BD%D0%B0%D0%BB%D0%B8%D0%B7%D0%B0%D1%82%D0%BE%D1%80%20%D0%B2%D0%B7%D0%B2%D0%B5%D1%88%D0%B5%D0%BD%D0%BD%D1%8B%D1%85%20%D0%B2%D0%B5%D1%89%D0%B5%D1%81%D1%82%D0%B2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29rcm%280%29cdl%28na%29eco%28327680%29ti%281%29&redirnss=1 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA set-cookie: yabs-sid=2457636051753505386; Path=/; SameSite=None; Secure i=0n1SvkIFsP2+lEMtv1tadcrZVv6dKexGH0xw3wOjeLtf0+U4HdedCLFVGHHh+CyxIc5dSklkmHTsR35xW9RuLgtsOy4=; Expires=Tue, 24-Jul-2035 04:49:37 GMT; Domain=.yandex.com; Path=/; Secure; HttpOnly; SameSite=None yandexuid=3243587331753505386; Expires=Tue, 24-Jul-2035 04:49:37 GMT; Domain=.yandex.com; Path=/; Secure; SameSite=None yuidss=3243587331753505386; Expires=Sun, 26-Jul-2026 04:49:46 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure ymex=1785041386.yrts.1753505386#1785041386.yrtsi.1753505386; Expires=Sun, 26-Jul-2026 04:49:46 GMT; Domain=.yandex.com; Path=/; SameSite=None; Secure bh=YOq8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Sun, 30 Aug 2026 04:49:46 GMT; SameSite=None; Secure bh=YOq8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Sun, 30 Aug 2026 04:49:46 GMT; SameSite=None; Secure strict-transport-security: max-age=31536000 access-control-allow-origin: http://divv.ws x-xss-protection: 1; mode=block pragma: no-cache access-control-allow-credentials: true last-modified: Sat, 26-Jul-2025 04:49:46 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2

	GET mc.yandex.com/metrika/advert.gif	77.88.21.119	200 OK	43 B
URL GET HTTPS mc.yandex.com/metrika/advert.gif IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-04 Times Seen50794 Size43 B (43 bytes) MD5df3e567d6f16d040326c7a0ea29a4f41 SHA1ea7df583983133b62712b5e73bffbcd45cc53736 SHA256548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 Certificate Info IssuerGlobalSign nv-sa Subjectmc.yandex.ru Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64 ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT HTTP Headers `GET /metrika/advert.gif HTTP/1.1 Host: mc.yandex.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://divv.ws/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-length: 43 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA content-type: image/gif accept-ranges: bytes expires: Sat, 26 Jul 2025 05:49:46 GMT strict-transport-security: max-age=31536000 date: Sat, 26 Jul 2025 04:49:46 GMT last-modified: Thu, 17 Jul 2025 18:05:49 GMT access-control-allow-origin: * etag: "68793b7d-2b" cache-control: max-age=3600 set-cookie: bh=YOq8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Sun, 30 Aug 2026 04:49:46 GMT; SameSite=None; Secure timing-allow-origin: * X-Firefox-Spdy: h2

	GET top-fwz1.mail.ru/counter2?id=1837286;t=210;js=13;r=;j=false;s=1280*1024;d=24;rand=0.0007989446427295599	95.163.52.67	200 OK	797 B
URL GET HTTPS top-fwz1.mail.ru/counter2?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 IP / ASN 95.163.52.67 #47764 LLC VK Requested byhttp://divv.ws/divv.html Resource Info File typeGIF image data, version 87a, 88 x 31 First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size797 B (797 bytes) MD5ec982c7e33273f451c4266eebc90438d SHA18c9551d9cbe4f5ee207f6526228addda39e88520 SHA2566628e48b42f7bca5cd4812825e7d52ed5144742272ec5ce4012297fab5fe6cce Certificate Info IssuerGlobalSign nv-sa Subject.mail.ru FingerprintA7:18:98:D5:D1:A2:CD:F2:24:03:81:71:3A:65:D1:77:70:36:B0:D7 ValidityMon, 21 Oct 2024 10:39:44 GMT - Sat, 22 Nov 2025 10:39:43 GMT HTTP Headers GET /counter2?id=1837286;t=210;js=13;r=;j=false;s=12801024;d=24;rand=0.0007989446427295599 HTTP/1.1 Host: top-fwz1.mail.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://divv.ws/ DNT: 1 Connection: keep-alive Cookie: FTID=1RMYgQ0tkIIY:1753505385:1837286::: Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Sat, 26 Jul 2025 04:49:46 GMT content-type: image/gif content-length: 797 set-cookie: PVID=32c-E603UxIY00002j1RLKYY:::0-0-0-d9eb72a-0-d9eb72a:CAASEPXNP8H1R2z-Fgrp1cHu5J4aYDMenaYnoWei03lR3tfXXV-GlBv2N8Xerw9MdIGkBXQS7og5qxbkhRc09ik8XhfqprdVnhsHdhMLB6oITF542cr9j4O7y3QastAxYpSR8fgD1GhlYzlABCCsUoqUeozSvw; path=/; expires=Mon, 27-Jul-26 04:49:46 GMT; HttpOnly; SameSite=None; Secure; Partitioned VID=32c-E603UxIY00002j1RLKYY:::0-0-0-d9eb72a-0-d9eb72a:CAASEPXNP8H1R2z-Fgrp1cHu5J4aYDMenaYnoWei03lR3tfXXV-GlBv2N8Xerw9MdIGkBXQS7og5qxbkhRc09ik8XhfqprdVnhsHdhMLB6oITF542cr9j4O7y3QastAxYpSR8fgD1GhlYzlABCCsUoqUeozSvw; path=/; expires=Mon, 27-Jul-26 04:49:46 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure FTID=0; path=/; expires=Thu, 01-Jan-70 00:00:01 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure tmr_lvid=015b233e53308b12026999cc60d586bd; path=/; expires=Mon, 27-Jul-26 04:49:46 GMT; domain=.mail.ru; Secure tmr_lvidTS=1753505386000; path=/; expires=Mon, 27-Jul-26 04:49:46 GMT; domain=.mail.ru; Secure access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS access-control-allow-headers: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin timing-allow-origin: * x-content-type-options: nosniff p3p: CP="NOI DSP COR NID CUR PSA OUR NOR" cache-control: private, no-cache, no-store, max-age=0 pragma: no-cache accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version accept-ch-lifetime: 86400 X-Firefox-Spdy: h2

	GET divv.ws/favicon.ico	195.24.68.30	404 Not Found	49 kB
URL GET HTTP divv.ws/favicon.ico IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeHTML document, Unicode text, UTF-8 text, with very long lines (1406) First Seen2025-04-17 Last Seen2025-07-26 Times Seen14 Size49 kB (48773 bytes) MD5e25d587bd3fddd55592d42626be655fd SHA17ea7ffa8f748f929f72a9183a7f1c749c3065a34 SHA256887e1dda47f25a942122cded6513747882a1d605a8f818b934b306847047e12f HTTP Headers `GET /favicon.ico HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/divv.html Cookie: _ym_uid=175350538625761718; _ym_d=1753505386; _ym_isad=2 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Server: openresty Date: Sat, 26 Jul 2025 04:49:46 GMT Content-Type: text/html; charset=utf-8 Content-Length: 48773 Connection: keep-alive Accept-Ranges: bytes`

	POST mc.yandex.com/watch/10065979/1?page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&hittoken=1753505386_02a8eb3335be353da588835dbb4e5cc2482d26295525528c13436b9914faf0db&browser-info=nb%3A1%3Acl%3A276%3Aar%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726045000%3Aet%3A1753505401%3Ac%3A1%3Arn%3A256140926%3Arqn%3A2%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C7%2C1470%2C1470%2C0%2C1300%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1753505384672%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1753505401&t=gdpr(14)mc(cm-1-tl-1-atb-1)clc(0-0-0)rqnt(2)aw(1)rcm(0)cdl(na)eco(327680)oms(0)prs(2)w2s(0)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D	77.88.21.119	200 OK	43 B
URL POST HTTPS mc.yandex.com/watch/10065979/1?page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&hittoken=1753505386_02a8eb3335be353da588835dbb4e5cc2482d26295525528c13436b9914faf0db&browser-info=nb%3A1%3Acl%3A276%3Aar%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726045000%3Aet%3A1753505401%3Ac%3A1%3Arn%3A256140926%3Arqn%3A2%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C7%2C1470%2C1470%2C0%2C1300%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1753505384672%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1753505401&t=gdpr(14)mc(cm-1-tl-1-atb-1)clc(0-0-0)rqnt(2)aw(1)rcm(0)cdl(na)eco(327680)oms(0)prs(2)w2s(0)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D IP / ASN 77.88.21.119 #13238 YANDEX LLC Requested byhttp://divv.ws/divv.html Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-04 Times Seen50794 Size43 B (43 bytes) MD5df3e567d6f16d040326c7a0ea29a4f41 SHA1ea7df583983133b62712b5e73bffbcd45cc53736 SHA256548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 Certificate Info IssuerGlobalSign nv-sa Subjectmc.yandex.ru Fingerprint6C:98:CD:97:92:D2:EE:63:A5:D3:A7:DC:CA:54:8E:30:28:C5:79:64 ValidityWed, 19 Mar 2025 21:10:40 GMT - Fri, 29 Aug 2025 20:59:59 GMT HTTP Headers POST /watch/10065979/1?page-url=http%3A%2F%2Fdivv.ws%2Fdivv.html&charset=utf-8&hittoken=1753505386_02a8eb3335be353da588835dbb4e5cc2482d26295525528c13436b9914faf0db&browser-info=nb%3A1%3Acl%3A276%3Aar%3A1%3Avf%3Aewmdp6canmv9llrr62hktvdr89i3%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A2133%3Acn%3A1%3Adp%3A0%3Als%3A621153147009%3Ahid%3A455584273%3Az%3A0%3Ai%3A20250726045000%3Aet%3A1753505401%3Ac%3A1%3Arn%3A256140926%3Arqn%3A2%3Au%3A175350538625761718%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Awv%3A2%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C7%2C1470%2C1470%2C0%2C1300%3Aco%3A0%3Acpf%3A1%3Aeu%3A1%3Ans%3A1753505384672%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1753505401&t=gdpr(14)mc(cm-1-tl-1-atb-1)clc(0-0-0)rqnt(2)aw(1)rcm(0)cdl(na)eco(327680)oms(0)prs(2)w2s(0)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22ct.e%22%3A%22ns%22%7D%7D HTTP/1.1 Host: mc.yandex.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://divv.ws DNT: 1 Connection: keep-alive Referer: http://divv.ws/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 HTTP/2 200 OK content-length: 43 cache-control: private, no-cache, no-store, must-revalidate, max-age=0 content-type: image/gif access-control-allow-origin: http://divv.ws strict-transport-security: max-age=31536000 accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA pragma: no-cache expires: Sat, 26-Jul-2025 04:50:01 GMT last-modified: Sat, 26-Jul-2025 04:50:01 GMT set-cookie: bh=YPm8kcQGahfcyuH/CJLYobEDn8/14QzlyPCOA5S2Ag==; Path=/; Domain=.yandex.com; Expires=Sun, 30 Aug 2026 04:50:01 GMT; SameSite=None; Secure access-control-allow-credentials: true x-xss-protection: 1; mode=block X-Firefox-Spdy: h2

	GET divv.ws/mm_spacer.gif	195.24.68.30	200 OK	43 B
URL GET HTTP divv.ws/mm_spacer.gif IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeGIF image data, version 89a, 1 x 1 First Seen2023-04-05 Last Seen2025-08-04 Times Seen37872 Size43 B (43 bytes) MD5325472601571f31e1bf00674c368d335 SHA12daeaa8b5f19f0bc209d976c02bd6acb51b00b0a SHA256b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b HTTP Headers `GET /mm_spacer.gif HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/divv.html Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Type: image/gif Content-Length: 43 Connection: keep-alive Last-Modified: Fri, 14 Mar 2008 17:36:28 GMT ETag: "47dab79c-2b" Accept-Ranges: bytes`

	GET divv.ws/divv.jpg	195.24.68.30	200 OK	56 kB
URL GET HTTP divv.ws/divv.jpg IP / ASN 195.24.68.30 #48287 Jsc ru-center Requested byhttp://divv.ws/divv.html Resource Info File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACD Systems Digital Imaging, datetime=2011:11:15 11:08:13], baseline, precision 8, 500x440, components 3 First Seen2025-07-26 Last Seen2025-07-26 Times Seen1 Size56 kB (55910 bytes) MD559d54331f27ce4b6d2be0960e6272ad2 SHA145ebda45007198f2da79807733b09603097a4703 SHA2569285f97e0a6a464ee773951206dbe70a9ba217a516cfa753f76bee33b65633cc HTTP Headers `GET /divv.jpg HTTP/1.1 Host: divv.ws User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://divv.ws/divv.html Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: openresty Date: Sat, 26 Jul 2025 04:49:45 GMT Content-Type: image/jpeg Content-Length: 55910 Connection: keep-alive Last-Modified: Wed, 16 Nov 2011 11:06:56 GMT ETag: "4ec39950-da66" Accept-Ranges: bytes`

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (12)

HTTP Transactions (17)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers