lkq4ya2dlz.x10inc.site/
172.67.183.37200 OK 598 B IP 172.67.183.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 32a8ed78464cdca0eb84952b960fd5b9
5dfcc65c410e58fc9f4507965111c9051264dae3
bb9f5efc759ad43a7fe5b9ad2c29c946234a2f5f8d35cdfe83096e58b6b554ff
GET / HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.33
Refresh: 3;url=https://allnewsfeed.pro/product?stream_uuid=5d5b9202-6524-46d5-a09d-7bbf51672643
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MirWmbTmnxv2trNXziaNQd7melxDYl19%2Fr4lDP2z66BKf6GJEPDHtrgbzvVwY5JyBMLPm%2By6bGE4vOL3nPQpl3iGp%2FEBaXFiTuN5iPRorp2NpRIiq4F5Rq%2B7cDjwTepvynL9uQ9j22Bt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791fbdaf2f311c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7160
Expires: Tue, 31 Jan 2023 06:34:50 GMT
Date: Tue, 31 Jan 2023 04:35:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10100
Expires: Tue, 31 Jan 2023 07:23:50 GMT
Date: Tue, 31 Jan 2023 04:35:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 03:35:52 GMT
content-type: application/json
age: 3578
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15865
Expires: Tue, 31 Jan 2023 08:59:55 GMT
Date: Tue, 31 Jan 2023 04:35:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LCi70nl+4FjQY0xJ0mJq4IGbMDm/LliFoQMQjUVbn0wzw92PRpdUJVy20sEFNJL5Q6DhssQ7lec=
x-amz-request-id: N1JBVVA9SPZWNP32
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 04:22:04 GMT
age: 806
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:30 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lkq4ya2dlz.x10inc.site/assets/fonts/feather/feather.min.css
172.67.183.37200 OK 2.1 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/fonts/feather/feather.min.css
IP 172.67.183.37:0
File type ASCII text, with very long lines (10082), with no line terminators
Hash 0f79806c3926211b7537a2747969bea7
db324c717509bfe11570ec45f0ad0225c8ae8ae3
d3e3e9fb0722beec2a34c3408132ea6885f994ab44f7f7709b36fde959c927e4
GET /assets/fonts/feather/feather.min.css HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 May 2019 23:09:30 GMT
ETag: W/"5ce879aa-2762"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7rRrk26yKptcDngikPV%2BbR0YIEHOiHR1l20weqwevAR%2Bvtf8VlmJx5X%2FVbZyfS6qHgk1OFIO2%2BQWTOjBDFaSkVU4EAVTpInatGRCCP8n12EaOqBF0BoHbBdkwDQwobQTVwoM9f3RJVgf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1afc41c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/libs/jquery-mask-plugin/dist/jquery.mask.min.js
172.67.183.37200 OK 3.4 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/libs/jquery-mask-plugin/dist/jquery.mask.min.js
IP 172.67.183.37:0
File type ASCII text, with very long lines (537)
Hash d6d7e39ed6abb474e8834ac085c002ca
98f4567727a4ef9a185a2b996ff1778b315e06ad
832581beb6270c58a8f6070024e612fac4f5380d0000d67e8922321bcfec0441
GET /assets/libs/jquery-mask-plugin/dist/jquery.mask.min.js HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 May 2019 23:09:30 GMT
ETag: W/"5ce879aa-1ff9"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CfRiiXST1zTRTQh7oVSdJjf6bvhQYdYofw6052P%2F17iZbTzM%2BV7rVWqbxKLE65ZM3ZtURB18L6QNj65Q%2F0vycshw35k17FYcbw40RZKF0BcJ8Jh6602TD4Rxvwl8cUNsegUQIVr4ku%2FX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1bf94b521-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/libs/autosize/dist/autosize.min.js
172.67.183.37200 OK 1.3 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/libs/autosize/dist/autosize.min.js
IP 172.67.183.37:0
File type ASCII text, with very long lines (3507)
Hash 13302ceea6773e1fea5230f015879850
170092f9bc574079e9b03a0e0651c4531c13044b
301481b962e043d5fafe4052ccd25f44c21df86be0a9db5636d9db812d4d8d43
GET /assets/libs/autosize/dist/autosize.min.js HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 May 2019 23:09:30 GMT
ETag: W/"5ce879aa-dfc"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rO%2BzeJ8iEeMGMgSMxCYmsBGwx4fiW5UXoLDUzLK62MsTbi7cchmI3luJ%2BTHEHHDTTJlmmW5RFzsCbke%2FHxQG42UFmzHk5RSb7u2nMMlY3f4nX2Q9nxhoCh2vZDpOQ7uuX4sx2PAQojLb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1bf1e1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/libs/jquery/dist/jquery.min.js
172.67.183.37200 OK 31 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/libs/jquery/dist/jquery.min.js
IP 172.67.183.37:0
File type ASCII text, with very long lines (65451)
Hash 281e79c3468c820c3ed6b99e34a11ab6
844ce27bc796bdd5a4d8aa7615caa89abcf20ce4
1163e4002fb365ebb7e2d9302ab8a09501ce126646d50e2ae2d08a5c6aefc647
GET /assets/libs/jquery/dist/jquery.min.js HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 May 2019 23:09:30 GMT
ETag: W/"5ce879aa-15851"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CFte%2BB8o8HOpLNegHwUvbr24da6uQt0J9tssCVAR%2BUv3tTqEE5qvHoxM%2FS6I1unBgcUrPtsgQMw5m8EczOAuHZHOLwLXFmt3kb5Dy%2FwrEszikuJxGRIcVxtAgq1UmDPTLARI8hAd4O2E"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1ab391c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/libs/bootstrap/dist/js/bootstrap.bundle.min.js
172.67.183.37200 OK 22 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/libs/bootstrap/dist/js/bootstrap.bundle.min.js
IP 172.67.183.37:0
File type ASCII text, with very long lines (65297)
Hash b20b73bfe71ff7f2772e8f621e7eab12
664c5f6c13c016f58179d86ab241a306b0d659e6
8e430b8b2a802334e6b1a35d7a226102d99d4980f690da9d32abb6b3739bde1d
GET /assets/libs/bootstrap/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 May 2019 23:09:30 GMT
ETag: W/"5ce879aa-1332b"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uhRlL2%2BHgT6qTBJvIvMUTeI3Cmml0IZV6wxw4iCUwrwhVKpYyI1g5odJxOfaO6PiaCVkc1zhDtrHaJ6hVZDjd8Oc1TsSAgDXajDHQPG9gkQrVDC0omBllDUi3FpzVnWkYbTw5yOWCjyD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1ba570b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/css/theme.min.css
172.67.183.37200 OK 37 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/css/theme.min.css
IP 172.67.183.37:0
Hash 790d4742d5372e2844bb0f19fd11fa5a
eb14d72b15dd6dbc51742d12cff506ebdc55b660
6dc34acd1ab87eddc7936486713754e7f8c6f4b759c332a4adf2b1e4b7c897d9
GET /assets/css/theme.min.css HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 11:29:38 GMT
ETag: W/"63d658a2-40950"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1J3WV7DjngV4gKbO3uICGqyMDjHHt8tFrWIiRH8fqp0Y9cYJwYLS%2BNiFZGdH7Sy7wT455zIuqWAVM55fJQz61nGUkvHVlk2FkP1Zq%2BJgt76Ldho6SXyCJUejJHldqdAbjek9kQEBMhkb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb1a89b1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/js/theme.min.js
172.67.183.37200 OK 85 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/js/theme.min.js
IP 172.67.183.37:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash df690c48a1fa9f7bcb0aad2e84cedc5c
a504ee688350d25665d26f0a8c9d7a3ad6774a29
bed09bb62b9673893a47fa3188d92d8d9a7f29aa7d72212ddafbb20b8834b9ca
NIDS Severity Alert suricata high ET HUNTING Possible Obfuscator io JavaScript Obfuscation
GET /assets/js/theme.min.js HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 16:08:18 GMT
ETag: W/"63d7eb72-3a6cd"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=teNFFvoNnz6F8IDOGDqkxDmb6c6DdDPRsKEW4RbxhYydZLgMbq1Ok0pQ1KyAp3O32TVGQ2TcJdSONwVpk%2BrS8gfuP2CUJ%2FZB04Yp3jQO%2BGj8qaFUz5Fe%2F3WXy%2B0%2FERg%2Br%2BvJRkRXwqgB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb21fdb1c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
lkq4ya2dlz.x10inc.site/assets/fonts/cerebrisans/SFUIDisplay-Medium.woff2
172.67.183.37200 OK 49 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/fonts/cerebrisans/SFUIDisplay-Medium.woff2
IP 172.67.183.37:0
File type Web Open Font Format (Version 2), TrueType, length 48832, version 1.0\012- data
Hash 0d8112ea4c8c4839f8aaa12ec19b6008
8d5e226577cab263116ae0fe21d253b96a1006e9
5d4a6031ceb6df122244fc170f8349cc4946a1c8387adf122ff37acb801d2f0d
GET /assets/fonts/cerebrisans/SFUIDisplay-Medium.woff2 HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/assets/css/theme.min.css
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Length: 48832
Connection: keep-alive
Last-Modified: Sun, 08 Jan 2023 02:29:08 GMT
ETag: "bec0-5f1b76a488500"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k87Um502h6ys01dhQ31sP7nEsEClHLlhXY0dtDd%2FONahg6TMxhcJFxIsB7%2FBcd2CqIc56YScc1qz%2Fko13RlAio2L7T5dmACHTQUYgLhH7QBx84n38r0xetc0haXif8VBHAKZOyuN6Kq7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb409021bfe-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 03:41:42 GMT
age: 3228
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
lkq4ya2dlz.x10inc.site/assets/img/favicon.ico
172.67.183.37200 OK 8.4 kB URL HTTP/1.1 lkq4ya2dlz.x10inc.site/assets/img/favicon.ico
IP 172.67.183.37:0
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Hash f98d0d29cf6680119361a67a27d80832
d472730ec0638756405ab9bf03a49449a6886c49
240b2f7389c5f212d1f9a3afe6457a3694c516ed90c77401b2a77e636753b1bc
GET /assets/img/favicon.ico HTTP/1.1
Host: lkq4ya2dlz.x10inc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lkq4ya2dlz.x10inc.site/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:30 GMT
Content-Type: image/vnd.microsoft.icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 16 Jan 2023 11:09:32 GMT
ETag: W/"23b1-5f25f9e1bf300"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9EoKE3CSUwVPaSO3RtJVCivVq1OFGjMGJ5WKstBDEEcGQLSpGilD%2FndE956gUAQsS%2B1ujA%2BcjsHksNXlOx8iSAL%2FO46TH2KdZmq4v5lqLHTX5V4Zo5kk4e%2BIt9lTFVDFuNwie7ivjReL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdb5293b1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14101
Expires: Tue, 31 Jan 2023 08:30:31 GMT
Date: Tue, 31 Jan 2023 04:35:30 GMT
Connection: keep-alive
push.services.mozilla.com/
52.39.176.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.176.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EZcaugQ9kDQIccS39rZ9gg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gYunoM6YKaEZqJeeMgJ8EfUQdlE=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5657
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:35:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b60240f10673b4c275619f7c2f5005cf
d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51
ccfdf6106ab405f6fd346bd501a7bc121acba3db657bf0bc2f7587cbe6488f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5757
x-amzn-requestid: 7d5679c9-d86c-4179-b9eb-0bb0c669ff06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRYfEwvoAMFbsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c902-797b832050c000dd5a905f3b;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: x_N3UeM26YGF3H0FrJF1O8CD7p7n7HacaSr8Xc6-g51wJemoO6zmEg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 08:54:39 GMT
age: 70853
etag: "d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 00:33:02 GMT
age: 14550
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d143b65b98551bde96a7f026808d4583
3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7
004be88ebe2a4840bb718a5148fcf7d2dc1400f6c1c880cee4428d66ba91dbd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9972
x-amzn-requestid: 8a609804-1429-4a2d-abdc-7dc74a83a35b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcWB-GO8oAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4d072-0a0afc9625eb840c0b14b259;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:36:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uOHt5PEtB9XCEUi1eFA_7pTZsZgHQnvadZNw7BiXJTYMmnYgAzZ7pQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:58 GMT
age: 2674
etag: "3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F746a5715-1639-49f0-9350-9e74558b6a97.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F746a5715-1639-49f0-9350-9e74558b6a97.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b8edbb541668f634636dc44f1559b50
0a2322b18a1cc6ca4710fce7b6d8f28263ca6064
2765a746ef8f589399e2588727364fbea9c9710327f61c979371765def1e9694
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F746a5715-1639-49f0-9350-9e74558b6a97.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6893
x-amzn-requestid: 02212aa9-354a-4bad-9527-137b8d87115a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3jkHL9oAMFZAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c7d-27bd90b622159be117d43a21;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:06:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _ANr_OX05FwLjw68wKrj7y34-R-daqoh7b1SO4AGqe-fzSrVaDpEiA==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:11:08 GMT
age: 23064
etag: "0a2322b18a1cc6ca4710fce7b6d8f28263ca6064"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb1c622ae62d62090dcaf81709056
c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e
d1a2caf59c5bfb3fd66c804217c60705de91e5beebd006cffab1d712a5aef85b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8755
x-amzn-requestid: 18054ad3-92df-4a07-b7d1-643293ba4a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1hDGZfoAMFsFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c6c-7aae5ef32459231c25465b1b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5GkQA5AcFOFc2Wn5rdaX7nH5F4wfy52vtlpbI8Qlai-jQE77inKzqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:06:07 GMT
age: 66565
etag: "c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac9e49e19b226b271d1a6f29d7159e64
df578148d224d67fb6e098da3eeb1d86c233cb73
1e065f356fe4ae535ec6fa40ddbad8a2ddad1fa1a053bedceb25c90fa3620ad4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12154
x-amzn-requestid: 0ba17a3e-c78c-4634-8706-eedd20d8e3c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk303H-mIAMFelA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b8-1d7f813471bcbd3341f06e86;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xPsBUAX9p6j3zfTl4956VqN0aME12n_E5Q2eoHoBaPE1_ElvMrSx5g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:49:14 GMT
etag: "df578148d224d67fb6e098da3eeb1d86c233cb73"
content-type: image/jpeg
age: 24378
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
151.101.129.229200 OK 115 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP 151.101.129.229:0
Size 115 kB (115274 bytes)
Hash 45491083a58e0649a4d6145e4b3fa72e
1c386d73ce8bfbc9f112c4f81bd2d670eee0359b
1f733d6d77388f49fbbfc4b5c476e476eed6cf319d49eaa96a3c8fa93aa8ab34
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.257.0
x-jsd-version-type: version
etag: W/"34e3a-eIUrj6hD3pmnKAQZCp7YaNtM0Rc"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 04:35:34 GMT
age: 10746
x-served-by: cache-fra-eddf8230060-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 85751
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 12 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash e09f880232d6cba59305b523db8d6d07
0fbbf6a1ef870a0ae9df47ddae39edb7ae15acdc
4d06bdabc5800d5a3baf8f74e7f769dc6b461cff06bbf00d04079326edfaffa2
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:34 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "31FD81738F147D2A6E0E40D009A75FB69E77F4C5"
Expires: Tue, 31 Jan 2023 15:00:00 GMT
Last-Modified: Tue, 31 Jan 2023 03:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2618
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdcc8e0cb52d-OSL
www.googletagmanager.com/gtm.js?id=GTM-PGHNQHL
142.250.74.168200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PGHNQHL
IP 142.250.74.168:0
File type ASCII text, with very long lines (573), with no line terminators
Hash ed81af0caa2fce13609ce2032435cf82
039324f9e6d32cc47451781ba54367d58fd1bac6
c3a2569c667a39d482122417bc0eeaa228a72343879bbff545f8758a6a44f469
GET /gtm.js?id=GTM-PGHNQHL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 04:35:34 GMT
expires: Tue, 31 Jan 2023 04:35:34 GMT
cache-control: private, max-age=900
last-modified: Tue, 31 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38922
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 097fcb2736e37ac87b0b9c7b9b63daaa
9b6933311c2e3ab82caa7941c16595ef94d30e29
249f21bc9c49c5b866a252dff6cf8919382625ca0ac37395b3fbb57b084753f9
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 04:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 04 Feb 2023 01:21:13 GMT
ETag: "9b6933311c2e3ab82caa7941c16595ef94d30e29"
Last-Modified: Tue, 31 Jan 2023 01:21:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1838
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791fbdcede91b52d-OSL
mc.yandex.ru/watch/62742313/1?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
77.88.21.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/62742313/1?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash e11c8671c0ac3a931a272988e47f81af
1c53c126c2b76b706c51125aac52e18d0687f3d2
a815181ff16ab4367048a703014f8bd176fa5d2ec6178c209c9bba7b38b50df5
GET /watch/62742313/1?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://allnewsfeed.pro
Referer: https://allnewsfeed.pro/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Tue, 31 Jan 2023 04:35:34 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://allnewsfeed.pro
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 04:35:34 GMT
last-modified: Tue, 31-Jan-2023 04:35:34 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 31 Jan 2023 04:35:35 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Tue, 31 Jan 2023 05:35:35 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1&z=1079530896
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1&z=1079530896
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1&z=1079530896 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 04:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/62742313?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 1.4 kB URL HTTP/2 mc.yandex.ru/watch/62742313?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
Hash 697778c864eacb7656eef158df4e768d
e663e8edd2660e20f99b1bddd903581ecfee2bca
14deccab6859941597349d81395bd9cee6b232e64d860bb754459ec7ca95bf4d
GET /watch/62742313?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://allnewsfeed.pro
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/62742313/1?wmode=7&page-url=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A708%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1365109300191%3Ahid%3A619201112%3Az%3A0%3Ai%3A20230131043549%3Aet%3A1675139750%3Ac%3A1%3Arn%3A245806126%3Arqn%3A1%3Au%3A1675139750497039968%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A199%2C13%2C151%2C0%2C%2C0%2C%2C280%2C1%2C%2C%2C%2C696%3Aco%3A0%3Ans%3A1675139748898%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675139750%3At%3AInteresting%20this%20week&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 31 Jan 2023 04:35:34 GMT
access-control-allow-origin: https://allnewsfeed.pro
set-cookie: yabs-sid=1385871371675139734; Path=/; SameSite=None; Secure
i=pj1hkodi9ewyVWmYaRYBbGhyk6Y+lcp+Nij1Y1on+luJHvAgfW9yiegleeF+PqKxVWO9hz228fDo0nXHHyttshgxqec=; Expires=Fri, 28-Jan-2033 04:35:32 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5438714971675139734; Expires=Wed, 31-Jan-2024 04:35:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5438714971675139734; Expires=Wed, 31-Jan-2024 04:35:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706675734.yc.1675139734#1706675734.yrts.1675139734#1706675734.yrtsi.1675139734; Expires=Wed, 31-Jan-2024 04:35:34 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 31-Jan-2023 04:35:34 GMT
last-modified: Tue, 31-Jan-2023 04:35:34 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
top-fwz1.mail.ru/js/code.js
95.163.52.67200 OK 14 kB URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP 95.163.52.67:0
File type ASCII text, with very long lines (729)
Hash 557f853dec4e2eb5512822cf77ed10a4
14d83f93714fe8d59046ac945ce69feb164206ec
4820794d01d6c01c8de3cc025c5d54abf8607c4087649efc54cc20e58bf4287a
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675139735:0:::; path=/; expires=Thu, 01-Feb-24 04:35:35 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Tue, 31 Jan 2023 05:35:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675139750410%3A1675139750430%3A1%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.09579703383381233
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675139750410%3A1675139750430%3A1%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.09579703383381233
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675139750410%3A1675139750430%3A1%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.09579703383381233 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allnewsfeed.pro/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675139735:3239004:::; path=/; expires=Thu, 01-Feb-24 04:35:35 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash acd316ed514317c57031cf8a2f4e175f
6ac4cf84e6c6aa49e56b0816435730e4cc6f05ea
5ca00b626043fb28f127446d75a0c997b474a5fafcb4d671d9e824e56c91b5a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CA00B626043FB28F127446D75A0C997B474A5FAFCB4D671D9E824E56C91B5A6"
Last-Modified: Mon, 30 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11886
Expires: Tue, 31 Jan 2023 07:53:41 GMT
Date: Tue, 31 Jan 2023 04:35:35 GMT
Connection: keep-alive
region1.analytics.google.com/g/collect?v=2&tid=G-FW1JQ04721>m=2oe1p0&_p=1929825291&_gaz=1&cid=2068243322.1675139750&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675139750&sct=1&seg=0&dl=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&dt=Interesting%20this%20week&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-FW1JQ04721>m=2oe1p0&_p=1929825291&_gaz=1&cid=2068243322.1675139750&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675139750&sct=1&seg=0&dl=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&dt=Interesting%20this%20week&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-FW1JQ04721>m=2oe1p0&_p=1929825291&_gaz=1&cid=2068243322.1675139750&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675139750&sct=1&seg=0&dl=https%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643&dt=Interesting%20this%20week&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://allnewsfeed.pro
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://allnewsfeed.pro
date: Tue, 31 Jan 2023 04:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1
173.194.73.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1
IP 173.194.73.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-FW1JQ04721&cid=2068243322.1675139750>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://allnewsfeed.pro
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://allnewsfeed.pro
date: Tue, 31 Jan 2023 04:35:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.luckypush.pro/push-server-init.js
141.95.47.237200 OK 57 kB URL HTTP/2 cdn.luckypush.pro/push-server-init.js
IP 141.95.47.237:0
File type ASCII text, with very long lines (56719), with no line terminators
Hash d0f8df2aee56479ae36f5923a2d72433
d078fc0c7d3ee9524973440e22f8ec0e4f9c8c50
d5c02fe33dd0a1e00187f72107d8191c292160491ff52cdea9207897d7d6f870
GET /push-server-init.js HTTP/1.1
Host: cdn.luckypush.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: application/javascript
content-length: 56719
last-modified: Thu, 22 Dec 2022 14:20:16 GMT
x-rgw-object-type: Normal
etag: "d0f8df2aee56479ae36f5923a2d72433"
x-amz-request-id: tx0000000000000072993ea-0063d89a11-370b669b-ams3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
top-fwz1.mail.ru/tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675139748898/////1/9/209/209/224/214/224/374/412/384/654/696/696/1633/1634/;ni=;lvid=1675139750410%3A1675139750547%3A2%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.9969424566124799;e=RT/load;et=1675139750545
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675139748898/////1/9/209/209/224/214/224/374/412/384/654/696/696/1633/1634/;ni=;lvid=1675139750410%3A1675139750547%3A2%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.9969424566124799;e=RT/load;et=1675139750545
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675139748898/////1/9/209/209/224/214/224/374/412/384/654/696/696/1633/1634/;ni=;lvid=1675139750410%3A1675139750547%3A2%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.9969424566124799;e=RT/load;et=1675139750545 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675139735:3239004:::; path=/; expires=Thu, 01-Feb-24 04:35:35 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 32de6ccf4421b508a50f53ed6e838808
2caecc157262725ed8a2e616fc00e22ecb865c26
d4bf888c9fa85a200050baa096fc24a2681125aac7ba5b760ccd4642de0ab414
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=171978
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Etag: "63d881a3-117"
Expires: Thu, 02 Feb 2023 04:21:53 GMT
Last-Modified: Tue, 31 Jan 2023 02:49:07 GMT
Server: ECS (amb/6B9A)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 32de6ccf4421b508a50f53ed6e838808
2caecc157262725ed8a2e616fc00e22ecb865c26
d4bf888c9fa85a200050baa096fc24a2681125aac7ba5b760ccd4642de0ab414
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1721
Cache-Control: max-age=168133
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Etag: "63d881a3-117"
Expires: Thu, 02 Feb 2023 03:17:48 GMT
Last-Modified: Tue, 31 Jan 2023 02:49:07 GMT
Server: ECS (amb/6BB8)
X-Cache: HIT
Content-Length: 279
tracker.luckypush.pro/v3/config?page=https://allnewsfeed.pro&api_key=
172.67.158.152200 OK 0 B URL HTTP/2 tracker.luckypush.pro/v3/config?page=https://allnewsfeed.pro&api_key=
IP 172.67.158.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v3/config?page=https://allnewsfeed.pro&api_key= HTTP/1.1
Host: tracker.luckypush.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://allnewsfeed.pro/
Origin: https://allnewsfeed.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
HTTP/2 200 OK
date: Tue, 31 Jan 2023 04:35:35 GMT
content-length: 0
allow: GET, OPTIONS
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yksULN9ZvkMQ5SUTDjGWT324235tReJMv44e%2BCy%2B2EhvHD8UYFoIKFvBMSzcgxlXyC%2B1kxwX3YSoMO73TJi%2BYH9%2Bc2Imc5nw8aDqXy9FC3YSe3tgI9YDEoPHcKzmK39tOT09Zf52TeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791fbdd45d53b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 32de6ccf4421b508a50f53ed6e838808
2caecc157262725ed8a2e616fc00e22ecb865c26
d4bf888c9fa85a200050baa096fc24a2681125aac7ba5b760ccd4642de0ab414
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=171978
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 04:35:35 GMT
Etag: "63d881a3-117"
Expires: Thu, 02 Feb 2023 04:21:53 GMT
Last-Modified: Tue, 31 Jan 2023 02:49:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
cdn.luckypush.pro/sw.js
141.95.47.237200 OK 1.4 kB IP 141.95.47.237:0
File type ASCII text, with very long lines (1435), with no line terminators
Hash 96882b1abd1d541f04257c7185406f8d
95a9888c3bf553a57798347ad6fb8dc0ade4c97d
eb11ddbdfba3951dcb9243f12d2fd947f2d7ab7e95b7b54de903aaf70efd4773
GET /sw.js HTTP/1.1
Host: cdn.luckypush.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: application/javascript
content-length: 1435
last-modified: Thu, 22 Dec 2022 14:20:15 GMT
x-rgw-object-type: Normal
etag: "96882b1abd1d541f04257c7185406f8d"
x-amz-request-id: tx000000000000007298abc-0063d89a06-370b669b-ams3c
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
tracker.luckypush.pro/v3/sw/events?event=install&version=0.2.0
172.67.158.152200 OK 17 B URL HTTP/2 tracker.luckypush.pro/v3/sw/events?event=install&version=0.2.0
IP 172.67.158.152:0
File type JSON data\012- , ASCII text
Hash 03b507b91616ee29114af71ad019d7db
626b24639b827006b10ae7015bba66a98a982855
da46a49b1f860eef4a92b8a6371329d3797aae639c1d2ff21e9105773bb49e14
GET /v3/sw/events?event=install&version=0.2.0 HTTP/1.1
Host: tracker.luckypush.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://allnewsfeed.pro/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 04:35:36 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=70c%2B7UuzabVGG8z83BGlkgfBp4Hy%2FRzwJf0Mj7H%2FZZLBELk3rc61PkaPrYNcgLLPrZ7l2R5kesreiPKk6JaOm0TvQIaPSIhoxLp9H7NS1W3pwvf0XesNCi2tqH%2BMKwFYh1jEzOOyWq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791fbdd5bdd8b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675139750410%3A1675139753852%3A3%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.8420575187526156;e=RT/unload;et=1675139753850;pvt=4298;vtauto=3447
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675139750410%3A1675139753852%3A3%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.8420575187526156;e=RT/unload;et=1675139753850;pvt=4298;vtauto=3447
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=3239004;u=https%3A//allnewsfeed.pro/product%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643%26googleIdTh%3D458a3797-af7f-4d00-9205-4e4e7a387cd7%26id%3D30668%26;st=1675139749552;pid=USER_ID;title=Interesting%20this%20week;s=1280*1024;vp=1280*939;touch=0;hds=1;frame=0;flash=;sid=238bac7052beb0f9;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1675139750410%3A1675139753852%3A3%3Af9083cd0b49802734f8a172af5d69935;opts=dl%2Cjst-gtag-ym;visible=true;_=0.8420575187526156;e=RT/unload;et=1675139753850;pvt=4298;vtauto=3447 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 04:35:38 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675139738:3239004:::; path=/; expires=Thu, 01-Feb-24 04:35:38 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
tracker.luckypush.pro/v3/config?page=https://allnewsfeed.pro&api_key=
172.67.158.152200 OK 0 B URL HTTP/2 tracker.luckypush.pro/v3/config?page=https://allnewsfeed.pro&api_key=
IP 172.67.158.152:0
GET /v3/config?page=https://allnewsfeed.pro&api_key= HTTP/1.1
Host: tracker.luckypush.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://allnewsfeed.pro
Connection: keep-alive
Referer: https://allnewsfeed.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 04:35:35 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-headers: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WVxbrK5zgq9bbHKxKNn5ryKNub8BTyTa7kmnPoksR0oeatms4hmihUU%2FaVeu%2FrH98eoEJc0Ble6J5mE1CHafb9CGbO1oy%2FJy8woe5HQnmbxxiEAHDeA8z5Yuws0u4ongmpW%2FuK8t%2FdY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791fbdd4ad66b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
allnewsfeed.pro/product?stream_uuid=5d5b9202-6524-46d5-a09d-7bbf51672643
172.67.221.52200 OK 0 B URL HTTP/2 allnewsfeed.pro/product?stream_uuid=5d5b9202-6524-46d5-a09d-7bbf51672643
IP 172.67.221.52:0
GET /product?stream_uuid=5d5b9202-6524-46d5-a09d-7bbf51672643 HTTP/1.1
Host: allnewsfeed.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 04:35:34 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: lna-surfer-uuid=458a3797-af7f-4d00-9205-4e4e7a387cd7; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
first-entry=1; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
lna-visit-uuid=cadc73ce-16a5-4d0d-8f2c-6ee569c0be81; expires=Tue, 31-Jan-2023 05:35:34 GMT; Max-Age=3600; path=/; httponly
d05018884cca6c5ce75745e2462b6268=1; expires=Tue, 31-Jan-2023 05:35:34 GMT; Max-Age=3600; path=/; httponly
stream_uuid=5d5b9202-6524-46d5-a09d-7bbf51672643; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
utm_source=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
utm_medium=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
utm_campaign=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
utm_content=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
utm_term=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
subid1=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
subid2=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
subid3=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
subid4=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
subid5=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
28734809d7e256c1564af748f20113b1=1; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
is-cpc-level-1=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
is-cpc-level-2=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
is-cpc-level-3=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
is-cpc-level-4=deleted; expires=Mon, 31-Jan-2022 04:35:33 GMT; Max-Age=0; path=/; httponly
visit-counter=1; expires=Tue, 31-Jan-2023 05:35:34 GMT; Max-Age=3600; path=/; httponly
cpc_level=3; path=/; httponly
owner_id=30668; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
pw_segments=00000000-0000-0000-0000-000000000000; expires=Thu, 05-Jan-2023 20:15:34 GMT; Max-Age=0; path=/; httponly
current_user_url=http%3A%2F%2Fallnewsfeed.pro%2Fproduct%3Fstream_uuid%3D5d5b9202-6524-46d5-a09d-7bbf51672643; expires=Wed, 31-Jan-2024 04:35:34 GMT; Max-Age=31536000; path=/; httponly
lna-trek-uuid=36ea2e1b-3fba-4bd0-bcef-4bb7fb422442; expires=Tue, 31-Jan-2023 05:35:34 GMT; Max-Age=3600; path=/; httponly
laravel_session=CKYiQf2ShnPm5YnZAzEn09RGLIeAsfRHRQ3u2MQf; expires=Tue, 31-Jan-2023 06:35:34 GMT; Max-Age=7200; path=/; httponly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6CsK8fXTxnY4vj77v9Mrz2JMfzSJ%2BWflYVZdogVAr9yMJxoBJyMlIkpi7sjM9C1r04vJpevXm3iXydtyd45XqUd85y%2Fk%2F%2B777Y4w4p9sU1qM9fVefzDH%2BqXcTNfnSt28FLY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791fbdc94def1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2