| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash81713f952b51a865ad9764cde68e3fdb 278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6749
Expires: Sat, 04 Feb 2023 08:52:26 GMT
Date: Sat, 04 Feb 2023 06:59:57 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe051e6e01b12b9ad6e0014603f93431a ada9efe77054d8593f2687fb3a7eada8908ef7e8 c41be8ffe176ca674efb0588164fdfd237754c6b5b461f8f46387b96ae7d6090
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41BE8FFE176CA674EFB0588164FDFD237754C6B5B461F8F46387B96AE7D6090"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16565
Expires: Sat, 04 Feb 2023 11:36:03 GMT
Date: Sat, 04 Feb 2023 06:59:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11165
Expires: Sat, 04 Feb 2023 10:06:03 GMT
Date: Sat, 04 Feb 2023 06:59:58 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 06:36:14 GMT
content-type: application/json
age: 1424
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 33e1V+QaQ8digOwfyevs7A+/r6IfWM/aeTLRIM6fe+4aE/tS8kYwiASROoxruiO/rMhLJQEDB9vVjPKQos7gCg==
x-amz-request-id: YY9TRC8DVXN39M3X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 06:23:53 GMT
age: 2165
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mwebnice.com/7359/250/2/?subid=audivamicxajdjfs | 172.67.146.245 | 302 Found | 0 B |
URL HTTP/1.1mwebnice.com/7359/250/2/?subid=audivamicxajdjfs IP172.67.146.245:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /7359/250/2/?subid=audivamicxajdjfs HTTP/1.1
Host: mwebnice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 06:59:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=3600, private
pragma: no-cache
location: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
expires: Sat, 04 Feb 2023 07:59:58 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794186ce8bb7b4eb-OSL
alt-svc: h2=":443"; ma=60
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 06:07:19 GMT
age: 3159
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9168c4ade1282d8d5cd96967d61d9525 fe67f10aa63ad53353963a1020b8046aab854175 d5dfb63bbd5ab20c72d00562992f6fef30fc23e6a8793941b1540a67bccc7cfb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5DFB63BBD5AB20C72D00562992F6FEF30FC23E6A8793941B1540A67BCCC7CFB"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 12:59:58 GMT
Date: Sat, 04 Feb 2023 06:59:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14905
Expires: Sat, 04 Feb 2023 11:08:23 GMT
Date: Sat, 04 Feb 2023 06:59:58 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.186.71.207 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.186.71.207:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nuyURt5a1fxpJKVjMC9g/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jnr/eG+9QWTr1MN6PUypiaXtwtU=
|
|
| audivax.com/images/cross.png | 5.161.41.168 | 200 OK | 12 kB |
URL HTTP/2audivax.com/images/cross.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 720 x 720, 8-bit gray+alpha, non-interlaced\012- data Hash0d7bf8529215dcca5d1e16b153dd061b dd5e6355f2eedc3be70ff50cf3327ce9567b36f9 dd0a776dfd913748379252b377b9ac0445cf4fcc05b8f869f6f5ab5a75c42fab
GET /images/cross.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 12211
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/one-bottle.png | 5.161.41.168 | 200 OK | 28 kB |
URL HTTP/2audivax.com/images/one-bottle.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 222 x 427, 8-bit colormap, non-interlaced\012- data Hash079eeafc2f48081ec7d2c1aaad3f213e 922aef8b5965de174ba29fd02b092929a227398b 29a9fc10fd55d92ffdf1fd27ef116bc7f38e1294ca74d32891e3ce2491bf1902
GET /images/one-bottle.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 28259
last-modified: Tue, 05 Apr 2022 14:40:05 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/six-bottles.png | 5.161.41.168 | 200 OK | 80 kB |
URL HTTP/2audivax.com/images/six-bottles.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 669 x 443, 8-bit colormap, non-interlaced\012- data Hash170001880e73ccc504662dece7b45836 840a1e924ae59c6550990debf4a4e8be270ad488 cfd9576538662be300196da3ee56d990dcb2e2ee06dff0755f47442551e82eff
GET /images/six-bottles.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 79455
last-modified: Tue, 05 Apr 2022 14:40:08 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| audivax.com/js/main.js | 5.161.41.168 | 200 OK | 1.1 kB |
IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typeASCII text, with CRLF line terminators Hash8c63698c11e27714855e2c6da82c4b9d eb3e8879288fa741986cdf8d0cfcd827271265cb 7f32e34f1077f53ad27f8f59c6368f4bcb9da88b3f2e6f40befb145b80c3aeb6
GET /js/main.js HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: application/javascript
last-modified: Thu, 09 Jun 2022 09:13:42 GMT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@700;900&display=swap | 142.250.74.106 | 200 OK | 1.0 kB |
URL HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@700;900&display=swap IP142.250.74.106:0
Hash55170b14ba6864ddb22476657b1e3a25 ad8646485fb0e256dbb01f1015a4827a9a302845 53c072d7e844d1fdb04c15993f0cec524223f13340c48f18c6161fc44875d285
GET /css2?family=Montserrat:wght@700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 06:59:59 GMT
date: Sat, 04 Feb 2023 06:59:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://audivax.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 85910
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://audivax.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:05:29 GMT
expires: Tue, 30 Jan 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 442470
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 | 216.58.207.227 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data Hashb4a68b1e743ee317eaaf0bbadd131571 f24f7823d4e3830c7cfa5bcb33733d2897c00f13 ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://audivax.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:06:04 GMT
expires: Sat, 03 Feb 2024 02:06:04 GMT
cache-control: public, max-age=31536000
age: 104035
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| audivax.com/images/three-bottles.png | 5.161.41.168 | 200 OK | 48 kB |
URL HTTP/2audivax.com/images/three-bottles.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 406 x 395, 8-bit colormap, non-interlaced\012- data Hashad41f48e1a016499734107488cab471b 4890c43f6c7117126e321c8083d7e1b5b639cbfb 2a74b07fd52a8fe74c2c9445e66ce4d8658cb8798cd40f813280faa640edcc94
GET /images/three-bottles.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 47886
last-modified: Tue, 05 Apr 2022 14:40:10 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/rhodiola.png | 5.161.41.168 | 200 OK | 86 kB |
URL HTTP/2audivax.com/images/rhodiola.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 205 x 205, 8-bit/color RGBA, non-interlaced\012- data Hash9f7115836e9dead10c5fb50c3c12a8ab a6e6b92aa9a4ac2ae9d86e4d809ae7631bd1e90a 211c727ea235734550e31c63ef59100b13a5d64d3c68f4cedb5a2adabdb0b16c
GET /images/rhodiola.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 86470
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/Chamomile.png | 5.161.41.168 | 200 OK | 99 kB |
URL HTTP/2audivax.com/images/Chamomile.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data Hashdcd50f42c2b10691ea91fb22fc2bd02a 663cd0d34e52028899e3fbb9be6629d559c71ac2 24045db5432a7d2856132455edae6f46e526695543a12c79f3c119f42c3fe5d3
GET /images/Chamomile.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 99368
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://audivax.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 02:42:35 GMT
expires: Wed, 31 Jan 2024 02:42:35 GMT
cache-control: public, max-age=31536000
age: 361044
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashc277bcbe21eed8a944d233e3b763733f 753196716d30387bfe1bfb3d9e750bc8840c1e4d 1f60473f78958bb1e116af04b96b92c3b56a7fef7c200ed9dba6e6b50bd8c313
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1081
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Last-Modified: Sat, 04 Feb 2023 06:41:59 GMT
Server: ECS (amb/6B82)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| audivax.com/images/Ashawanga.png | 5.161.41.168 | 200 OK | 68 kB |
URL HTTP/2audivax.com/images/Ashawanga.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 183 x 183, 8-bit/color RGBA, non-interlaced\012- data Hash53e19c193fd67365763f218704da5f1b 1e9ae5f7954134a21e3595e710eabff17a4ea295 559c9fb434eb115f449d0c53bdc43e8ba1310043bbb11b4291bff60d3eba7d59
GET /images/Ashawanga.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: image/png
content-length: 67762
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/Valerian.png | 5.161.41.168 | 200 OK | 110 kB |
URL HTTP/2audivax.com/images/Valerian.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data Size110 kB (110306 bytes) Hash6b1955b5e03900e73a909712eb6548ee 8838aed6be3135bd724c213fb64a1a443696718d 090e85e0d5b114863dd94d5bfe6721b975f50f5a7f3ab1728c8f0992b761ab52
GET /images/Valerian.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 110306
last-modified: Tue, 05 Apr 2022 14:45:01 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/Passion%20Flower.png | 5.161.41.168 | 200 OK | 77 kB |
URL HTTP/2audivax.com/images/Passion%20Flower.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data Hash6b28a57f209a6f839ae1c25a39e877dc f2ee3a08d541d46d7e8574fc1bcc8fc788da762c 3935661b50b3be0273d2a020e5738b1b1f377fea3adec829d135e9d16d58cbe0
GET /images/Passion%20Flower.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 77268
last-modified: Tue, 05 Apr 2022 14:43:29 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/buygoods.png | 5.161.41.168 | 200 OK | 8.9 kB |
URL HTTP/2audivax.com/images/buygoods.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 180 x 42, 8-bit/color RGBA, non-interlaced\012- data Hashde6524191d5e30559222d4cf2441e809 858af1ef493fc7b463f5dbc76e3bc9e0f8f0aa97 a35577a6f27da6bbe4126f06658250a8f98f5bdfdf95bd938315296234fb1ec3
GET /images/buygoods.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 8853
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/Skullcap.png | 5.161.41.168 | 200 OK | 66 kB |
URL HTTP/2audivax.com/images/Skullcap.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 187 x 187, 8-bit/color RGBA, non-interlaced\012- data Hash07bb0a9df6b8dfdf775c2cdc4a6aa9a8 4a0c0cf187d1461b3df7aae335110c1e3ea67893 0225c4eefd2d36f6d7f8db7cf7f5de628c5e463396ec2671ab0e9c72f4b0bccc
GET /images/Skullcap.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 65848
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| audivax.com/images/Hawthorn.png | 5.161.41.168 | 200 OK | 78 kB |
URL HTTP/2audivax.com/images/Hawthorn.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data Hasha4b8913c3a39dfd388054ac185889aba 2140e6047456e52ffdef02aad3c168fb4b2fdf10 f6f8a5b26c330150c9331ce52dee333fb333b616d5ecb8603f045ea508210645
GET /images/Hawthorn.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 77900
last-modified: Tue, 05 Apr 2022 14:44:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash4ff8000cfcc456a64762cf101a040f5c ebd55cb8eecdcd8a95736f49e8ee9653e55cb904 07f66ec7f6124fb8d2f8677737783e3784d104d7cb8d174bce4946a98aa46137
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Etag: "63dd67eb-117"
Server: ECS (amb/6B7F)
Content-Length: 279
|
|
| ocsp.sca1b.amazontrust.com/ | 54.230.245.110 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP54.230.245.110:0
Hashd56cc20a486b3fe903651e7163685b2a 083eb0c809c2a279d21de7c6cef478b2d15263c1 0718d926a3777482979ca7ded52ee8bd042ef1f1880d2ede71e1a39f26766327
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129911
Date: Sat, 04 Feb 2023 06:59:59 GMT
Etag: "63dd5714-1d7"
Expires: Sun, 05 Feb 2023 19:05:10 GMT
Last-Modified: Fri, 03 Feb 2023 18:48:52 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XRxZU8kmc0oqvNtql14fkSRq4UIbcB1JaqNyHTbSr7KQo4Np_h-L_Q==
Age: 978
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashc277bcbe21eed8a944d233e3b763733f 753196716d30387bfe1bfb3d9e750bc8840c1e4d 1f60473f78958bb1e116af04b96b92c3b56a7fef7c200ed9dba6e6b50bd8c313
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1081
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Last-Modified: Sat, 04 Feb 2023 06:41:59 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashca600cb91936d1fcff93bdb423bcb2e4 dc98f53ad0d4eb57801fd6b271708aed17afdfd8 0418ee69418d62c22543a6cef508a878620bb038b13d84a34d80210c441ba5d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5247
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 06:59:59 GMT
Last-Modified: Sat, 04 Feb 2023 05:32:32 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
|
|
| s3-us-west-2.amazonaws.com/jsstore/a/JKRHJ08/ge.js | 52.218.249.224 | 403 Forbidden | 243 B |
URL HTTP/1.1s3-us-west-2.amazonaws.com/jsstore/a/JKRHJ08/ge.js IP52.218.249.224:0
File typeXML 1.0 document text\012- XML document, ASCII text Hashca1746909b08f822f5e09806d491d6d4 455fa8c14c0fc5eced2a0680ad07cd8349b54c6e bfac42332b561e75f5157e482492046bec241e989d0d27125612d9ce50e93d5e
GET /jsstore/a/JKRHJ08/ge.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
x-amz-request-id: 67GS2RBMQMP62SZ2
x-amz-id-2: KjSusYee97L71SOXMbyqdAOHkrS0cVHZlz/P3HqYylqf6J9hae9U6/9KZhXqwl6UhsQvgHH7Fts=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Sat, 04 Feb 2023 06:59:59 GMT
Server: AmazonS3
|
|
| audivax.com/images/favicon.png | 5.161.41.168 | 200 OK | 38 kB |
URL HTTP/2audivax.com/images/favicon.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data Hashdcc01edecb0672babde567722f4b58a8 5549caa95670767518020beb304c0331ac8b6395 49c967a4a73fd40809fad6794fdfed9d749d264267d351232d0bb6806846af54
GET /images/favicon.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Cookie: visited=yes; sessid2=sessid20230204065917306; spi_funnel_codename=; aff_id=2110; sid=250%7C7359_sessid20230204065941016; campaign_id=; referrer=91.90.42.154::audivax.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: image/png
content-length: 38305
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.20.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.20.226:0
Hash57b06d6564f52a4419c227c9df44e5a9 0ad5101e1ef5307f438d1cd7732a1718cc8b839f c71c3480b689d9d541383983203968699315e67fff7910c86f72d8968c394989
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 06:59:59 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 08 Feb 2023 04:15:50 GMT
ETag: "0ad5101e1ef5307f438d1cd7732a1718cc8b839f"
Last-Modified: Sat, 04 Feb 2023 04:15:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2927
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794186db6ae70b55-OSL
|
|
| player.vimeo.com/progressive_redirect/playback/676567557/rendition/1080p?loc=external&signature=7a56dd93d11b0cb42fff4b58cdb8325952cf02dc9c8fc2cf08a50941666aee32 | 162.159.138.60 | 302 Found | 0 B |
URL HTTP/1.1player.vimeo.com/progressive_redirect/playback/676567557/rendition/1080p?loc=external&signature=7a56dd93d11b0cb42fff4b58cdb8325952cf02dc9c8fc2cf08a50941666aee32 IP162.159.138.60:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /progressive_redirect/playback/676567557/rendition/1080p?loc=external&signature=7a56dd93d11b0cb42fff4b58cdb8325952cf02dc9c8fc2cf08a50941666aee32 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sat, 04 Feb 2023 06:59:59 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Location: https://vod-progressive.akamaized.net/exp=1675508399~acl=%2Fvimeo-prod-skyfire-std-us%2F01%2F313%2F27%2F676567557%2F3117148400.mp4~hmac=06a975d3b421b8aec47d6cdb34d3d9f8731fa9b7b6b051ee3d125cf2406586cc/vimeo-prod-skyfire-std-us/01/313/27/676567557/3117148400.mp4
X-Player-Backend: g
Via: 1.1 google, 1.1 varnish
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-cph2320035-CPH
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675494000.836979,VS0,VE147
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=NvMZz2JXn8788HQg9xTRUsw21FQdGzAQtF20.KxD0aw-1675493999-0-AZECdA73fAEz1MB9p0PP+vBmzwAU9DlQ/WqtLRnm/NgEQuSDzv6b+HScSLY65cwzsiDxKo8c7YgnRDenwVWG53c=; path=/; expires=Sat, 04-Feb-23 07:29:59 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 794186daea1e0b49-OSL
|
|
| mc.yandex.ru/metrika/tag.js | 77.88.21.119 | 200 OK | 74 kB |
URL HTTP/2mc.yandex.ru/metrika/tag.js IP77.88.21.119:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (659) Hasha236c7014c1f1a1e52d356f59e5d665a b66c638eb2346287364c37725819bbab1f409d66 ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73769
date: Sat, 04 Feb 2023 06:59:59 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 04 Feb 2023 07:59:59 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sat, 04 Feb 2023 09:28:26 GMT
Date: Sat, 04 Feb 2023 07:00:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8906
Expires: Sat, 04 Feb 2023 09:28:26 GMT
Date: Sat, 04 Feb 2023 07:00:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9271
Expires: Sat, 04 Feb 2023 09:34:31 GMT
Date: Sat, 04 Feb 2023 07:00:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9271
Expires: Sat, 04 Feb 2023 09:34:31 GMT
Date: Sat, 04 Feb 2023 07:00:00 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6661b7263315f5eb3cd2465f671e1fcd b7b5831c6b3ccc41d7a980b6088adc10ff8785f1 eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 32056
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:00 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 08:00:00 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 2396
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf7101f6e43855cb76ce48271a847ffbd 8e674830a97d8ce3818132fda197db4f0289d316 e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 32633
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash99bf0073acf75f9e04b52a96bf47797b fa68da2c92fa89ed3dafe9915e064fca022af21f 961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ThTL_OlFd4yMELCmSzH4ziqxa8gdYgAAbxLY9VZPVaIldOUkvFVF_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:43 GMT
age: 31637
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash28099f5ad8a27e5a49a0d1c842486329 d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd 1d798d35ceae594d86fa43aa0ef47b962c52bb1557e17dda9b294bd01f374b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8352
x-amzn-requestid: 80032cef-14cd-4f56-9830-8c74891ed00f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEqQFDJIAMFspQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8174-6d3310287fc74bb27e9b038a;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: byr2TaC2xnnUl56r2iGKZI0o8Ctsv0iy42h_F7-ezKpEijaH9rr5EQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:53 GMT
etag: "d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd"
content-type: image/jpeg
age: 31627
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| audivax.com/includes/player-style.css | 5.161.41.168 | 200 OK | 6.3 kB |
URL HTTP/2audivax.com/includes/player-style.css IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
File typeASCII text, with CRLF line terminators Hashb9ea2d855800e3813d390cb37b6de7d4 55c01aa472698800d14bfcc84f151f141d0ddac2 b8fe7c5fb0bcf6de0f8a16769be6236fcb02763ed20b3071367e493d92ece367
GET /includes/player-style.css HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: text/css
last-modified: Thu, 17 Mar 2022 15:28:38 GMT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/88490633/1?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 | 77.88.21.119 | 200 OK | 407 B |
URL HTTP/2mc.yandex.ru/watch/88490633/1?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 IP77.88.21.119:0
File typeJSON data\012- , ASCII text, with very long lines (407), with no line terminators Hashae62776b1f8aec6396b5d222e38ecc5e fd2fadae8b22ef506ed28b7df979320d9fa73432 da20ac3617cb1f9df1a28d38304c8586e1e8322e49e471802bfe37a81162b616
GET /watch/88490633/1?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://audivax.com
Referer: https://audivax.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Sat, 04 Feb 2023 07:00:00 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:00 GMT
last-modified: Sat, 04-Feb-2023 07:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=102038585&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070037%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=102038585&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070037%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=102038585&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070037%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 144195
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:03 GMT
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:03 GMT
last-modified: Sat, 04-Feb-2023 07:00:03 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=470969121&wv-type=3&browser-info=we%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070038%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=470969121&wv-type=3&browser-info=we%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070038%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/88490633?wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=470969121&wv-type=3&browser-info=we%3A1%3Aet%3A1675494038%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070038%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494038&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:03 GMT
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:03 GMT
last-modified: Sat, 04-Feb-2023 07:00:03 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/88490633?wv-check=52689&wv-type=0&wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=90293367&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/88490633?wv-check=52689&wv-type=0&wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=90293367&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/88490633?wv-check=52689&wv-type=0&wmode=0&wv-part=1&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=90293367&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:06 GMT
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:06 GMT
last-modified: Sat, 04-Feb-2023 07:00:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=1056241441&wv-type=3&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=1056241441&wv-type=3&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=1056241441&wv-type=3&browser-info=we%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:06 GMT
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:06 GMT
last-modified: Sat, 04-Feb-2023 07:00:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=251108552&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) | 77.88.21.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=251108552&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) IP77.88.21.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/88490633?wmode=0&wv-part=2&wv-hit=958666904&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&rn=251108552&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1675494041%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230204070041%3Au%3A167549403597102156%3Avf%3Asm0eap24hzlr84c06sesn%3Ast%3A1675494041&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 07:00:06 GMT
access-control-allow-origin: https://audivax.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:06 GMT
last-modified: Sat, 04-Feb-2023 07:00:06 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| buygoods.com/affiliates/go/conversion/iframe/bg?a=7228&t=885853b909d88cc679c0e91cc0f35b97&s= | 172.66.40.141 | 200 OK | 0 B |
URL HTTP/2buygoods.com/affiliates/go/conversion/iframe/bg?a=7228&t=885853b909d88cc679c0e91cc0f35b97&s= IP172.66.40.141:0
GET /affiliates/go/conversion/iframe/bg?a=7228&t=885853b909d88cc679c0e91cc0f35b97&s= HTTP/1.1
Host: buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 07:00:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794186de8a700b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.9.0/css/all.css | 172.64.133.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/all.css IP172.64.133.15:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: text/css
x-amz-id-2: Spb1ZB77j4xx9SPSBxVkz+CjkVoCLnNPzuJ++QEN6GU0QUbNz41ZYqgiLLYqu/ZVhzedx0ivXZk=
x-amz-request-id: J2XHPWFP0DA0BC1A
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2597882
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FHFEgTRv051PqIqEzjoXQ5Uc5Bo89vJUQf%2BnDSU9%2BT1UvASWhezfnYUmiwOYGV7gqyBdR4HbteADMLDftkZ760iDxP3k4EV5UvoFzNV2CnMspyfOsrkbC4WGuM4vYVzOv6b21hml"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794186d5ceab23db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| audivax.com/images/lemon-balm-modified.png.png | 5.161.41.168 | 404 Not Found | 0 B |
URL HTTP/2audivax.com/images/lemon-balm-modified.png.png IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
GET /images/lemon-balm-modified.png.png HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: text/html; charset=iso-8859-1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vod-progressive.akamaized.net/exp=1675508399~acl=%2Fvimeo-prod-skyfire-std-us%2F01%2F313%2F27%2F676567557%2F3117148400.mp4~hmac=06a975d3b421b8aec47d6cdb34d3d9f8731fa9b7b6b051ee3d125cf2406586cc/vimeo-prod-skyfire-std-us/01/313/27/676567557/3117148400.mp4 | 23.36.76.152 | 206 Partial Content | 0 B |
URL HTTP/1.1vod-progressive.akamaized.net/exp=1675508399~acl=%2Fvimeo-prod-skyfire-std-us%2F01%2F313%2F27%2F676567557%2F3117148400.mp4~hmac=06a975d3b421b8aec47d6cdb34d3d9f8731fa9b7b6b051ee3d125cf2406586cc/vimeo-prod-skyfire-std-us/01/313/27/676567557/3117148400.mp4 IP23.36.76.152:0 ASN#20940 Akamai International B.V.
GET /exp=1675508399~acl=%2Fvimeo-prod-skyfire-std-us%2F01%2F313%2F27%2F676567557%2F3117148400.mp4~hmac=06a975d3b421b8aec47d6cdb34d3d9f8731fa9b7b6b051ee3d125cf2406586cc/vimeo-prod-skyfire-std-us/01/313/27/676567557/3117148400.mp4 HTTP/1.1
Host: vod-progressive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Range: bytes=0-
Referer: https://audivax.com/
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
X-GUploader-UploadID: ADPycdsZMBHFjc4J85n6tCuuJ0uy1r2pxSA5EtAc2wKcsUT1vqGSFunuJc8W3ecIK5XiQ6oWazL6kE6rWHgSivfrrh06kw
x-goog-hash: crc32c=qsJDPg==, md5=bL6CbwGUYYlJjIGq7YnFLw==
x-goog-storage-class: NEARLINE
Accept-Ranges: bytes
Server: UploadServer
Aka-c-hit: cache-hit
Last-Modified: Sat, 12 Feb 2022 12:11:58 GMT
ETag: "6cbe826f01946189498c81aaed89c52f"
Cache-Control: private, max-age=31218435
Expires: Wed, 31 Jan 2024 14:47:15 GMT
Date: Sat, 04 Feb 2023 07:00:00 GMT
Content-Range: bytes 0-157328297/157328298
Content-Length: 157328298
Connection: keep-alive
AK-REFERENCE-ID: 0.944c2417.1675494000.b3e9501
Akamai-Mon-Iucid-Del: 875210
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Content-Type: video/mp4
Timing-Allow-Origin: *
X-VIM-CACHEBC: EP:H11,E:m,TD0:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.152
|
|
| fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,700;1,400;1,700&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,700;1,400;1,700&display=swap IP142.250.74.106:0
GET /css2?family=Poppins:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 06:59:59 GMT
date: Sat, 04 Feb 2023 06:59:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| audivax.com/style.css | 5.161.41.168 | 200 OK | 0 B |
IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
GET /style.css HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: text/css
last-modified: Thu, 16 Jun 2022 05:08:56 GMT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7C | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Poppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7C IP142.250.74.106:0
GET /css?family=Poppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7CPoppins%7CMontserrat%7C HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 06:59:59 GMT
date: Sat, 04 Feb 2023 06:59:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v5.9.0/css/v4-shims.css | 172.64.133.15 | 200 OK | 0 B |
URL HTTP/2use.fontawesome.com/releases/v5.9.0/css/v4-shims.css IP172.64.133.15:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: text/css
x-amz-id-2: Txapr/ufTkVDw/YvyQL0z+i3Z1k8XFYPX+D3ustfZuiEDXVNAbgfzDTZjdsppkN1G7zgmmIhcfc=
x-amz-request-id: J2XW272F55Q8XMWG
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2597882
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uMkj7pSk1HFb4o36qfpuiiemKjsvS4NrB3KbDBzXCBAXXNfv17UdRF8hbR3CCSo9vxHhZY1J5xlP0%2FXsg9%2BKyMzIB4KW3UTozdsM5m5aFIdrVu8yRZEgDm5Vv%2BZeIvwtGZOC8QOI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 794186d5deac23db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tracking.buygoods.com/track/?a=7228&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=audivax,audivax_3,audivax_6&caller_url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250 | 172.66.43.22 | 200 OK | 0 B |
URL HTTP/2tracking.buygoods.com/track/?a=7228&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=audivax,audivax_3,audivax_6&caller_url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250 IP172.66.43.22:0
GET /track/?a=7228&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=audivax,audivax_3,audivax_6&caller_url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_7228=2110; expires=Fri, 05-May-2023 06:59:59 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_7228=250%7C7359_sessid20230204065941016; expires=Fri, 05-May-2023 06:59:59 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_7228=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7228=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_7228=91.90.42.154::audivax.com; expires=Fri, 05-May-2023 06:59:59 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_7228=sessid20230204065917306; expires=Fri, 05-May-2023 06:59:59 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_7228=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794186d7c9cd0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250 | 5.161.41.168 | 200 OK | 0 B |
URL HTTP/2audivax.com/?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250 IP5.161.41.168:0 ASN#213230 Hetzner Online GmbH
GET /?aff_id=2110&subid2=7359_sessid20230204065941016&subid=250 HTTP/1.1
Host: audivax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 06:59:58 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
X-Firefox-Spdy: h2
|
|
| go.maxweb.com/conversion/iframe/?a=7359&token=3d39324a5c3e45d08e6caa00a10e757e | 172.66.43.113 | 200 OK | 0 B |
URL HTTP/2go.maxweb.com/conversion/iframe/?a=7359&token=3d39324a5c3e45d08e6caa00a10e757e IP172.66.43.113:0
GET /conversion/iframe/?a=7359&token=3d39324a5c3e45d08e6caa00a10e757e HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://audivax.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 06:59:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 07:59:59 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794186d89f9eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/88490633?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) | 77.88.21.119 | 302 Found | 0 B |
URL HTTP/2mc.yandex.ru/watch/88490633?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) IP77.88.21.119:0
GET /watch/88490633?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://audivax.com
Connection: keep-alive
Referer: https://audivax.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/88490633/1?wmode=7&page-url=https%3A%2F%2Faudivax.com%2F%3Faff_id%3D2110%26subid2%3D7359_sessid20230204065941016%26subid%3D250&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1464%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A54688488316%3Ahid%3A958666904%3Az%3A0%3Ai%3A20230204070034%3Aet%3A1675494035%3Ac%3A1%3Arn%3A867490738%3Arqn%3A1%3Au%3A167549403597102156%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C364%2C195%2C0%2C465%2C0%2C%2C437%2C1%2C%2C%2C%2C1468%3Aco%3A0%3Ans%3A1675494032221%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675494035%3At%3AAudiVax&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 07:00:00 GMT
access-control-allow-origin: https://audivax.com
set-cookie: yabs-sid=2552438991675494000; Path=/; SameSite=None; Secure
i=iFkJxUoMisyHoOzibpsMaORw+UxhyUSUG+g3pal9mX0xB3naEAFanNI5ev0yyU50wZ+OOpGNCcOdlfb9G/S4BliLo30=; Expires=Tue, 01-Feb-2033 07:00:00 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8248200651675494000; Expires=Sun, 04-Feb-2024 07:00:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8248200651675494000; Expires=Sun, 04-Feb-2024 07:00:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707030000.yc.1675494000#1707030000.yrts.1675494000#1707030000.yrtsi.1675494000; Expires=Sun, 04-Feb-2024 07:00:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 07:00:00 GMT
last-modified: Sat, 04-Feb-2023 07:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|