lxdater.com/Subscri/ZA/2/index.html
143.204.55.6200 OK 1.5 kB URL HTTP/1.1 lxdater.com/Subscri/ZA/2/index.html
IP 143.204.55.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 56875d2241a25eb2426ff7c8c2676fc3
a38cc298a8ef406c9a77d9fbecf1bbfee7771d7e
f804e420a6112006e34efc531287b614bdeafc737a2bcda87b71e18823adf37d
Analyzer Verdict Alert fortinet Phishing
GET /Subscri/ZA/2/index.html HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 18 Feb 2023 09:48:15 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 04 Mar 2023 05:35:52 GMT
ETag: W/"af46c8cdc6bed349f3fe2f1fa1d7aa85"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FZi7QbJgdgUKF1-4dBkMOjAKJFG8O8mpQW3JYjA-txd0H0032XMcTA==
Age: 33727
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a39c6b0123e56e5b89743a8ad25c746e
feb61559594a73b319532dec130f10068fdf1242
d1adf9c8c7e63c33674a6af4b4111fe0ce1092d362ca4bf7c7dd00e6b6034f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1ADF9C8C7E63C33674A6AF4B4111FE0CE1092D362CA4BF7C7DD00E6B6034F09"
Last-Modified: Thu, 02 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2304
Expires: Sat, 04 Mar 2023 15:36:22 GMT
Date: Sat, 04 Mar 2023 14:57:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf3bd7bf954753a40867593f59828a19
8812b6b5e4e0725e3a5a7700be3ef0b4c3db4e24
d74374d27bbe6df8c6d8f7da2e5db0e0b07efb07a711131b500bc66a12594b88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D74374D27BBE6DF8C6D8F7DA2E5DB0E0B07EFB07A711131B500BC66A12594B88"
Last-Modified: Thu, 02 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13667
Expires: Sat, 04 Mar 2023 18:45:45 GMT
Date: Sat, 04 Mar 2023 14:57:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Retry-After, Backoff, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Mar 2023 14:08:26 GMT
content-type: application/json
age: 2972
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4e8aac6a39cada76c87582702f7c378
0260b5087dc89bc06032583627bc84109646561e
de8102626e7960652e844be721ec8336927886d18957a52474e4bc31a7c1a83b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE8102626E7960652E844BE721EC8336927886D18957A52474E4BC31A7C1A83B"
Last-Modified: Thu, 02 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2334
Expires: Sat, 04 Mar 2023 15:36:52 GMT
Date: Sat, 04 Mar 2023 14:57:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qe33z769KvrxXWKzi4RztybOQNLAG83QOi/RoK8djjkxuVk8Inqz2ywU7WNYjBh2ZjzxUe2xCo0=
x-amz-request-id: JGDZPV5ZX1W6C2JR
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Mar 2023 14:16:16 GMT
age: 2502
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Mar 2023 14:57:58 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Last-Modified, Retry-After, Expires, Pragma, Content-Length, Cache-Control, Alert, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Mar 2023 14:12:26 GMT
age: 2733
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
lxdater.com/Subscri/ZA/2/bootstrap.min.css
143.204.55.6200 OK 22 kB URL HTTP/1.1 lxdater.com/Subscri/ZA/2/bootstrap.min.css
IP 143.204.55.6:0
Hash a136e411aba86d7cb48f195259698e79
f4d2a8ea52d0a3447f99f79b010a1a58e55c63e5
9a62a61df36c633a74142c67075b8397d3aae2d3c7fa20d1f490a69f1685b8c0
GET /Subscri/ZA/2/bootstrap.min.css HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/ZA/2/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 18 Feb 2023 09:48:11 GMT
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Date: Sat, 04 Mar 2023 14:58:00 GMT
ETag: W/"6f68e2e91261b35fd0e69bcf7f67e519"
Vary: Accept-Encoding
X-Cache: RefreshHit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TIvzSQltsbwNuO9OwNcykblpKxmNih4Ks56srit8kzgIs5WHFCAs9Q==
lxdater.com/Subscri/ZA/2/style.css
143.204.55.6200 OK 5.4 kB URL HTTP/1.1 lxdater.com/Subscri/ZA/2/style.css
IP 143.204.55.6:0
Hash a4dec7fafdf3b934223f0e2c9bdad27f
6c50eda7cf0bc3214864ee6b1b01a9947f3a83bf
7e548553aec6ff8ee2c49f6d9adf5bf52bfe19a8d7d1c1368b9051786672bc17
GET /Subscri/ZA/2/style.css HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/ZA/2/index.html
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 04 Mar 2023 14:58:00 GMT
Last-Modified: Sat, 18 Feb 2023 09:48:16 GMT
ETag: W/"d088e9463b4f939ccffaf95c59ada861"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ykGvI6dqLwdgWsDANqK74ToxAm57gia1Sun3-y7IvIjik8TUBk4B3A==
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae3a34d88aadc877a7cd4bde2ce637f9
1f2721cd0fcf74835ecbea57506f0f9dd369f62c
bba70e7ce85b81a6ca0346956ea2021e29cf94ec13023fa75bd0a7fec943eb18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBA70E7CE85B81A6CA0346956EA2021E29CF94EC13023FA75BD0A7FEC943EB18"
Last-Modified: Thu, 02 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2653
Expires: Sat, 04 Mar 2023 15:42:12 GMT
Date: Sat, 04 Mar 2023 14:57:59 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ea7cbf05b9c91734e1efd761fbfddb22
54c4309ab6d4868f5676631a6d4d1e474821f721
9ad5b9631c87b5b95631e571948521770233d0f40767c071595291e75288094d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Mar 2023 14:57:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-PLMNLHH
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PLMNLHH
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 9a6cdf6ab9fd452fcbe8b81a9b391cae
6c2509c9d6310305d6ace3aa1cbe3dbbc5612c4a
ac1dccab8984fd559d99aab35f5a017fb4dbeff430505c9ac6f72a81cccfcb27
GET /gtm.js?id=GTM-PLMNLHH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Mar 2023 14:57:59 GMT
expires: Sat, 04 Mar 2023 14:57:59 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Mar 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ea7cbf05b9c91734e1efd761fbfddb22
54c4309ab6d4868f5676631a6d4d1e474821f721
9ad5b9631c87b5b95631e571948521770233d0f40767c071595291e75288094d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Mar 2023 14:57:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash ff6573191e4b44bc12ea4c0eee1f6ec8
88c57c1a389ef43b631fb4fd6c83f107bdb2d584
2e5792c5f1dc8b80573c6087bf199ed060bbd3ecddcfc1f78f233350b69617e9
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Mar 2023 14:57:59 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 08 Mar 2023 11:58:41 GMT
ETag: "88c57c1a389ef43b631fb4fd6c83f107bdb2d584"
Last-Modified: Sat, 04 Mar 2023 11:58:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2950
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7a2af98c5a45b4eb-OSL
push.services.mozilla.com/
54.149.117.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.117.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fHm9fVTBpbrsErQVpLQnPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nqYFiHlWS+1Ip4JPQV0buWjDh7I=
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash 6a599c9bd605553d6e8ea26b240017e5
ce6de2eaa815569841f1b16de3de7aa841ac7e88
8ee4a7bf51b198d826a7320c21965e73d95fd1642d9071a1a840e566ee9303de
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73790
date: Sat, 04 Mar 2023 14:57:59 GMT
access-control-allow-origin: *
etag: "63f47caa-1203e"
expires: Sat, 04 Mar 2023 15:57:59 GMT
last-modified: Tue, 21 Feb 2023 11:11:22 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lxdater.com/Subscri/ZA/2/images/favicon.png
143.204.55.6403 Forbidden 243 B URL HTTP/1.1 lxdater.com/Subscri/ZA/2/images/favicon.png
IP 143.204.55.6:0
File type XML 1.0 document text\012- XML document, ASCII text
Hash 067f3817457f07215983c343a72c7494
3568817b50ccd80c1fa667946350565f86aa6452
13d9a76f8b919703fc9bbdb1d79d4a3ca3c70c1fdcc614529085e7d401895ed6
GET /Subscri/ZA/2/images/favicon.png HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/ZA/2/index.html
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 04 Mar 2023 14:57:59 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1-xm454Wrjmwumusdb6L0-uOMLJGUAfKhOZ-nYkbdWPne6jDkIo93A==
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:00 GMT
access-control-allow-origin: *
etag: "63f47caa-2b"
expires: Sat, 04 Mar 2023 15:58:00 GMT
accept-ranges: bytes
last-modified: Tue, 21 Feb 2023 11:11:22 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A906%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A1603410554467%3Ahid%3A806085843%3Az%3A0%3Ai%3A20230304145758%3Aet%3A1677941879%3Ac%3A1%3Arn%3A528176597%3Arqn%3A1%3Au%3A167794187973802175%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C1%2C88%2C4%2C-4%2C0%2C%2C750%2C1%2C%2C%2C%2C904%3Aco%3A0%3Ans%3A1677941877221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677941879%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.250.119302 Found 419 B URL HTTP/2 mc.yandex.ru/watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A906%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A1603410554467%3Ahid%3A806085843%3Az%3A0%3Ai%3A20230304145758%3Aet%3A1677941879%3Ac%3A1%3Arn%3A528176597%3Arqn%3A1%3Au%3A167794187973802175%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C1%2C88%2C4%2C-4%2C0%2C%2C750%2C1%2C%2C%2C%2C904%3Aco%3A0%3Ans%3A1677941877221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677941879%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 962c73ed7df8c32a6bce2e526a8bbd6b
91eeeb9cf724e9a379f857f678cb507468016290
75dafd675c9addc6d3ea7404e8dcbca110f39660fe0f6dc11ad0229561622fa9
GET /watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A906%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A1603410554467%3Ahid%3A806085843%3Az%3A0%3Ai%3A20230304145758%3Aet%3A1677941879%3Ac%3A1%3Arn%3A528176597%3Arqn%3A1%3Au%3A167794187973802175%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C1%2C88%2C4%2C-4%2C0%2C%2C750%2C1%2C%2C%2C%2C904%3Aco%3A0%3Ans%3A1677941877221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677941879%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/61794157/1?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A906%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A1603410554467%3Ahid%3A806085843%3Az%3A0%3Ai%3A20230304145758%3Aet%3A1677941879%3Ac%3A1%3Arn%3A528176597%3Arqn%3A1%3Au%3A167794187973802175%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C1%2C88%2C4%2C-4%2C0%2C%2C750%2C1%2C%2C%2C%2C904%3Aco%3A0%3Ans%3A1677941877221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677941879%3At%3ABest%20video&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Mar 2023 14:58:00 GMT
access-control-allow-origin: http://lxdater.com
set-cookie: yabs-sid=2625848481677941880; Path=/; SameSite=None; Secure
i=9LcKqnhPINh6z7s4n48POBaOVP9FcAHVIgWzeQx7sjbTJBkrXhP9CTpJJBH47L0tJ2+jTBV8+SKl4n5jgG8fMMfPROU=; Expires=Tue, 01-Mar-2033 14:57:52 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=4503385651677941880; Expires=Sun, 03-Mar-2024 14:58:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=4503385651677941880; Expires=Sun, 03-Mar-2024 14:58:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1709477880.yc.1677941880#1709477880.yrts.1677941880#1709477880.yrtsi.1677941880; Expires=Sun, 03-Mar-2024 14:58:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:00 GMT
last-modified: Sat, 04-Mar-2023 14:58:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lxdater.com/Subscri/ZA/2/images/1.gif
143.204.55.6200 OK 472 kB URL HTTP/1.1 lxdater.com/Subscri/ZA/2/images/1.gif
IP 143.204.55.6:0
File type GIF image data, version 89a, 270 x 400\012- data
Size 472 kB (471812 bytes)
Hash 97ce50d0474f03410ad89b7182b97a32
eb8f3e398fb720b359958edd694e2144071d527c
6e1b0f36a0f4c8d0f68ddb5392813a0eb9a4dabcdfc90e8f5fd6b95daa6ad268
GET /Subscri/ZA/2/images/1.gif HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/ZA/2/index.html
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 471812
Connection: keep-alive
Date: Sat, 04 Mar 2023 14:58:00 GMT
Last-Modified: Sat, 18 Feb 2023 09:48:14 GMT
ETag: "97ce50d0474f03410ad89b7182b97a32"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ES7s6N_EPeIoOXX3m6BgASU_Fb0O_Fldskaoh37hB35h3O06je5tFQ==
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Sat, 04 Mar 2023 15:38:30 GMT
Date: Sat, 04 Mar 2023 14:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Sat, 04 Mar 2023 15:38:30 GMT
Date: Sat, 04 Mar 2023 14:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0880782ffbede81650c9d4a97c298bdf
0e35c0d6cba0bef0b9eeb039ebc9104b39b24e2e
77e1a8623eeadfa78646a661f4541b47b8f0a4ac6ad73825ce3a43fc57c21cd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77E1A8623EEADFA78646A661F4541B47B8F0A4AC6AD73825CE3A43FC57C21CD1"
Last-Modified: Thu, 02 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2430
Expires: Sat, 04 Mar 2023 15:38:30 GMT
Date: Sat, 04 Mar 2023 14:58:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48d8d31e-4b2c-47bc-986c-48a254f89921.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48d8d31e-4b2c-47bc-986c-48a254f89921.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94d08004ad57e967c969c2f515226cc4
936c9e53f91cfbd735c8799436c2d1b639aabc39
3a9f38ac2c1bd7129e65671ef7278cd84c0c587c8f1bddff67942c0cd123a85c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48d8d31e-4b2c-47bc-986c-48a254f89921.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14462
x-amzn-requestid: 25020f42-5ab6-41d9-a639-86e97d45c800
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOUnoH0UoAMFk6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640267ca-320998a5399634120d4bbc4c;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: XOKJzIm30bWJt4A2aDLB09WiR6mjX-s-u2yZTOsZlIM1N9VRHNIkbw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 22:02:00 GMT
age: 60960
etag: "936c9e53f91cfbd735c8799436c2d1b639aabc39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc87cbe69-ed83-442f-9aa8-06e8e40b4171.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc87cbe69-ed83-442f-9aa8-06e8e40b4171.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 380b24ddd315c60ce79f25e81d4e7082
0b9f1ebe49d4fddf773de442ec6612813804af2b
9eeb7457750942abfdec741e059e84f3ffe589d976a1f693f384dad6690dad53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc87cbe69-ed83-442f-9aa8-06e8e40b4171.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7930
x-amzn-requestid: aeab21c8-b182-4fb9-98d9-7105070d018a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOUnpG11oAMFw0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640267ca-4bc2f30375de585c11002cc6;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: o1LrVFzmaABJFedKhh9iIiiKNvXY0O6Z2I8gzKKmZc29dSp92PJBPw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 21:44:58 GMT
age: 61982
etag: "0b9f1ebe49d4fddf773de442ec6612813804af2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe438a253-9de3-434d-86fd-3c9c4b9837aa.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe438a253-9de3-434d-86fd-3c9c4b9837aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39b91f591a06e5a4643021ff56be3255
3546a22f843406ea91b147776bc37d76251098cd
7c51e000c2ab2925cd800fc90ac15f8f60f8484b10211fc02ae93a8b7c0bc2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe438a253-9de3-434d-86fd-3c9c4b9837aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 4bb2be1d-9522-41ab-982d-3972b289a775
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BJCcnEFyIAMFznw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64004ab6-3f6b26e726a08c9928bffb74;Sampled=0
x-amzn-remapped-date: Thu, 02 Mar 2023 07:05:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: NAt2bz3CKEB8qOwq6pY6Sb14_9ideYLufPWCnc-IWFEr8Hnqu4MTTg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 05:15:45 GMT
age: 34935
etag: "3546a22f843406ea91b147776bc37d76251098cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fa5dc9-caa3-4f10-8e11-c553d77d1884.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fa5dc9-caa3-4f10-8e11-c553d77d1884.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b4543507acda47348470fb3a165f9d5
59aeb0f0ef8e254f09235f188e954c710d58cd62
3a9043eff980a441f33ed06e485b008a49a33d321995974137fffaa7203e39d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fa5dc9-caa3-4f10-8e11-c553d77d1884.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7886
x-amzn-requestid: 9cb90846-b1a7-49fb-ab01-7e9f4ecfc30a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOUpEHlfIAMFvGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640267d3-1baf25c4405b13a67a2ecb42;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: mo7cvMiY2AEIqpTWerCZSZaLN7Yxi_UQ3jDTDRqcvchk5G8T8JPm2g==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 22:04:09 GMT
etag: "59aeb0f0ef8e254f09235f188e954c710d58cd62"
content-type: image/jpeg
age: 60831
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4726917eabc29a977873ad26e264e70d
4619a0418ee08d6618ead537f31823c98f355b5a
d3c6b43d46ccff30f0003a063b6c4c78d4a782262bfdeb138e6c015555ce2dcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0c3b178-ee57-465b-aa8c-fb6f93e35cab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3381
x-amzn-requestid: 8b89e7ab-b8b3-45cd-af3a-cc419e61f1fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A-PNPFynoAMFn8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fbf8ba-616bedc230d1c2b13a09beae;Sampled=0
x-amzn-remapped-date: Mon, 27 Feb 2023 00:26:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 20gfRWuEZKeWijeUdUr10sCx8uqri-zpK-KTXBJrZaQOm3V1Gk8KQw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Mar 2023 11:26:51 GMT
age: 12669
etag: "4619a0418ee08d6618ead537f31823c98f355b5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa5e06fd-9d0e-41ee-8678-21dea6944665.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa5e06fd-9d0e-41ee-8678-21dea6944665.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60b7f43334c20780a2078a3b260ef4f2
3dd3708456dcd4ccee428a138914a3778eb70916
504d47af2f5f6cf35abf189aed6fa03aacfaac6123550766928337c8f1e52be7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa5e06fd-9d0e-41ee-8678-21dea6944665.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: 681a2aa5-9c6f-490c-b242-1753c36fdc64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOUnpFgioAMFyKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640267ca-62e802682b78f9b45dda8d02;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 5XlAb6FGmPmAfR_OFr0dR_85TQNxhpxttObxFQr2ZolxUHWGpdCrpQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 22:02:00 GMT
age: 60960
etag: "3dd3708456dcd4ccee428a138914a3778eb70916"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=356727460&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941881%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941881&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=356727460&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941881%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941881&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=356727460&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941881%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941881&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5677
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:02 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:02 GMT
last-modified: Sat, 04-Mar-2023 14:58:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=338424034&wv-type=3&browser-info=we%3A1%3Aet%3A1677941882%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941882&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=338424034&wv-type=3&browser-info=we%3A1%3Aet%3A1677941882%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941882&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=338424034&wv-type=3&browser-info=we%3A1%3Aet%3A1677941882%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145801%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941882&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:02 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:02 GMT
last-modified: Sat, 04-Mar-2023 14:58:02 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddf96437-c609-495f-9b4a-8ad20c06ca1c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddf96437-c609-495f-9b4a-8ad20c06ca1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6406a9cebb9ae40d937d60dc1a5e0a8
316a8049fd50a1664655f3bdb253ec6b20f10520
0ce27e9fe29e1a20f29583d5144b8b0f4e5c13c29fb86faf8da09f5e703c1d37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddf96437-c609-495f-9b4a-8ad20c06ca1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10391
x-amzn-requestid: e376fceb-dba7-462d-8e4f-178d431784a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BOU9dGo9oAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64026855-4e127fb43bdc7c5a4482155e;Sampled=0
x-amzn-remapped-date: Fri, 03 Mar 2023 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: OUmJYSRy_E4PDmEa-G4dU4-0Uh2XbYgVGPHgwaoDcbqFzmpLPFH8qw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b618c0f73dc30c968057784ed0185d7a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Mar 2023 22:02:57 GMT
age: 60910
etag: "316a8049fd50a1664655f3bdb253ec6b20f10520"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wv-check=8138&wv-type=0&wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=186631413&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wv-check=8138&wv-type=0&wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=186631413&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wv-check=8138&wv-type=0&wmode=0&wv-part=1&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=186631413&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:08 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:08 GMT
last-modified: Sat, 04-Mar-2023 14:58:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=778323720&wv-type=3&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=778323720&wv-type=3&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=778323720&wv-type=3&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:08 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:08 GMT
last-modified: Sat, 04-Mar-2023 14:58:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=862676183&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=862676183&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=862676183&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:08 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:08 GMT
last-modified: Sat, 04-Mar-2023 14:58:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wv-check=54455&wv-type=0&wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=967099045&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/61794157?wv-check=54455&wv-type=0&wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=967099045&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wv-check=54455&wv-type=0&wmode=0&wv-part=2&wv-hit=806085843&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FZA%2F2%2Findex.html%23&rn=967099045&browser-info=we%3A1%3Aet%3A1677941887%3Aw%3A1280x939%3Av%3A970%3Az%3A0%3Ai%3A20230304145807%3Au%3A167794187973802175%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Ast%3A1677941887&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Mar 2023 14:58:08 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Mar-2023 14:58:08 GMT
last-modified: Sat, 04-Mar-2023 14:58:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2