lxdater.com/Subscri/LE/Lp2/index.html
143.204.55.15200 OK 1.5 kB URL User Request GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/index.html
IP 143.204.55.15:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 403aa70ce5684664108c0b743cd96ced
d9544edb49b4ce184978159012b11d3ec39938fa
e306b70c81d87d2a569c5cd2676e385527c08aee5549c2dc909b7901bd975a71
Analyzer Verdict Alert fortinet Phishing
GET /Subscri/LE/Lp2/index.html HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:30 GMT
Last-Modified: Sun, 25 Dec 2022 11:33:27 GMT
ETag: W/"74aaa5e96c56f908913b93231fef84fd"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QBUJD82NO4vHKdLEC1raALc2GMOtKXa7waeWQBb0IwctRlyekZSY4w==
lxdater.com/Subscri/LE/Lp2/style.css
143.204.55.15200 OK 5.4 kB URL GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/style.css
IP 143.204.55.15:80
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Hash ef52d0c70781698c8be28f9b06c1600c
0b91ce3c6551e59440d8e87b9e6d5bf09c083c15
1671f75af6447b1369f862106307a40b2dfa1adb1661cba7c56450935899498c
GET /Subscri/LE/Lp2/style.css HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/LE/Lp2/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:30 GMT
Last-Modified: Sun, 25 Dec 2022 11:33:28 GMT
ETag: W/"d088e9463b4f939ccffaf95c59ada861"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bQRHTt3cgWzdkhtiY5oJNadw_290M5zNYc2RUY9OTN5b1bATYNa_ug==
lxdater.com/Subscri/LE/Lp2/bootstrap.min.css
143.204.55.15200 OK 22 kB URL GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/bootstrap.min.css
IP 143.204.55.15:80
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Hash 37b82558961a850111f0ce20efd8e55d
d55dfc430c45e03596a6a0a8b62d4931d2a83ab4
5a1c256994cf17e472213c35df2c7bf7218fc84fe4d2b63f94753bf30c198521
GET /Subscri/LE/Lp2/bootstrap.min.css HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/LE/Lp2/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:30 GMT
Last-Modified: Sun, 25 Dec 2022 11:33:23 GMT
ETag: W/"6f68e2e91261b35fd0e69bcf7f67e519"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7tUsVrvDPxOJUU339f2HwmvGKeWcpBCbdiAFydDHfp2FzadthzSDMA==
www.googletagmanager.com/gtm.js?id=GTM-PLMNLHH
142.250.74.40200 OK 44 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PLMNLHH
IP 142.250.74.40:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint0D:E0:7D:60:57:50:BA:EB:CA:6E:2A:3F:20:5B:C7:91:67:89:3F:09
ValidityTue, 28 Mar 2023 16:45:47 GMT - Tue, 20 Jun 2023 16:45:46 GMT
File type ASCII text, with very long lines (2206)
Hash 9a2c6e2b3c0e0e41961efcbedf0c22a5
2b39dcad7332aa007c5de28105467b02464747cb
5300302189708208eadeb9a1bc500aa3f3d6dd0bcf9af7b6eb9618bf615449c1
GET /gtm.js?id=GTM-PLMNLHH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Apr 2023 20:23:30 GMT
expires: Sat, 15 Apr 2023 20:23:30 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Apr 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43471
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 74 kB URL GET HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (557)
Hash 40ae6984f926ba6efa666bad2d749be3
1803211166eedd9c6c87f414f00650d31f06e303
65220376f2c5316b26c6f5f647236ec7c9246709f30b2da8ce50bd51fd66b6e4
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 74393
date: Sat, 15 Apr 2023 20:23:30 GMT
access-control-allow-origin: *
etag: "6438d8df-12299"
expires: Sat, 15 Apr 2023 21:23:30 GMT
last-modified: Fri, 14 Apr 2023 07:38:55 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lxdater.com/Subscri/LE/Lp2/images/favicon.png
143.204.55.15403 Forbidden 243 B URL GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/images/favicon.png
IP 143.204.55.15:80
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
File type XML 1.0 document text\012- XML document, ASCII text
Hash 29db2b706b840fa27d91d8471a569723
0b7f6cd2765069ba7d44050b70a3a536f61b97c8
89d4eff5869f9317778f071369d58ca117bb2d9ac3f7993cd348321612dd7086
GET /Subscri/LE/Lp2/images/favicon.png HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/LE/Lp2/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:30 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nW5JYyQ6G6pCHD_SkZVK75spJwSwUyiU_oIU3U9cDlGtsTPs3_dQRA==
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL GET HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 15 Apr 2023 20:23:30 GMT
access-control-allow-origin: *
etag: "6438d8df-2b"
expires: Sat, 15 Apr 2023 21:23:30 GMT
accept-ranges: bytes
last-modified: Fri, 14 Apr 2023 07:38:55 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/61794157/1?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.250.119200 OK 419 B URL GET HTTP/2 mc.yandex.ru/watch/61794157/1?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash 269b067877980c25d47cb2d517f766d8
bd0b0a35d1a7f35f9325bc0c6f01412ca69b68de
df827ec915bc876580a4452a4d38ff6fea4a097a0322e14bf250ed9afbb2a613
GET /watch/61794157/1?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://lxdater.com
Referer: http://lxdater.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 15 Apr 2023 20:23:30 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:30 GMT
last-modified: Sat, 15-Apr-2023 20:23:30 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lxdater.com/Subscri/LE/Lp2/images/1.gif
143.204.55.15200 OK 344 kB URL GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/images/1.gif
IP 143.204.55.15:80
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
File type GIF image data, version 89a, 242 x 409\012- data
Size 344 kB (343605 bytes)
Hash fca0b456e84f6314392b7e99fcf359f4
c60ec38e1e04dc2436a99fcd5d4a8568c3f23fce
8b50c469ff15a4e8ebd25ef1c34761eed64daaf657bc00ca2d2753e84fab15ad
GET /Subscri/LE/Lp2/images/1.gif HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://lxdater.com/Subscri/LE/Lp2/index.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 343605
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:31 GMT
Last-Modified: Sun, 25 Dec 2022 11:33:25 GMT
ETag: "fca0b456e84f6314392b7e99fcf359f4"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SX6SkTQrAO13q55D_iIG0YB8La_JqPG-W7P-vVUCdoXFzshuIykqRg==
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=981457270&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL POST HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=981457270&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2)
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=981457270&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5768
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 15 Apr 2023 20:23:33 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:33 GMT
last-modified: Sat, 15-Apr-2023 20:23:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=653694857&wv-type=3&browser-info=we%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL POST HTTP/2 mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=653694857&wv-type=3&browser-info=we%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2)
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=1&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=653694857&wv-type=3&browser-info=we%3A1%3Aet%3A1681590300%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202459%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590300&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 15 Apr 2023 20:23:33 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:33 GMT
last-modified: Sat, 15-Apr-2023 20:23:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
lxdater.com/Subscri/LE/Lp2/index.html
143.204.55.85200 OK 1.5 kB URL User Request GET HTTP/1.1 lxdater.com/Subscri/LE/Lp2/index.html
IP 143.204.55.85:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 403aa70ce5684664108c0b743cd96ced
d9544edb49b4ce184978159012b11d3ec39938fa
e306b70c81d87d2a569c5cd2676e385527c08aee5549c2dc909b7901bd975a71
Analyzer Verdict Alert fortinet Phishing
GET /Subscri/LE/Lp2/index.html HTTP/1.1
Host: lxdater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 15 Apr 2023 20:23:30 GMT
Last-Modified: Sun, 25 Dec 2022 11:33:27 GMT
ETag: W/"74aaa5e96c56f908913b93231fef84fd"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yFlSHTPJ8zPMcyMcV_UM4mWdTHb_00FZ23Zpkluo55cRJ0CESBDB1w==
Age: 12
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=112310732&wv-type=3&browser-info=we%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2)
87.250.250.119 43 B URL mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=112310732&wv-type=3&browser-info=we%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2)
IP 87.250.250.119:0
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=112310732&wv-type=3&browser-info=we%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 15 Apr 2023 20:23:41 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:41 GMT
last-modified: Sat, 15-Apr-2023 20:23:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=32108624&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2)
87.250.250.119 43 B URL mc.yandex.ru/webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=32108624&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2)
IP 87.250.250.119:0
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/61794157?wmode=0&wv-part=2&wv-hit=621346208&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&rn=32108624&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1681590308%3Aw%3A1280x1024%3Av%3A1012%3Az%3A0%3Ai%3A20230415202508%3Au%3A1681590297207992680%3Avf%3Aihb4q796484i93absudza7%3Ast%3A1681590308&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 15 Apr 2023 20:23:41 GMT
access-control-allow-origin: http://lxdater.com
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:41 GMT
last-modified: Sat, 15-Apr-2023 20:23:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.250.119302 Found 419 B URL GET HTTP/2 mc.yandex.ru/watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.250.119:443
Requested by http://lxdater.com/Subscri/LE/Lp2/index.html
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/61794157?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://lxdater.com
Connection: keep-alive
Referer: http://lxdater.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: /watch/61794157/1?wmode=7&page-url=http%3A%2F%2Flxdater.com%2FSubscri%2FLE%2FLp2%2Findex.html%23&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3Aihb4q796484i93absudza7%3Afp%3A1377%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1012%3Acn%3A1%3Adp%3A0%3Als%3A248192903715%3Ahid%3A621346208%3Az%3A0%3Ai%3A20230415202457%3Aet%3A1681590297%3Ac%3A1%3Arn%3A38228889%3Arqn%3A1%3Au%3A1681590297207992680%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C1%2C428%2C1%2C1%2C0%2C%2C894%2C4%2C%2C%2C%2C1360%3Aco%3A0%3Acpf%3A1%3Ans%3A1681590294989%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1681590297%3At%3ABest%20video&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 15 Apr 2023 20:23:30 GMT
access-control-allow-origin: http://lxdater.com
set-cookie: yabs-sid=2441592261681590210; Path=/; SameSite=None; Secure
i=C0Yr2ylcKWIItwy0bb3C+rFneQoTOAZUElJDvBa9mjpQ8JUCL0wI7g443QhQZgNildtYq5dWTIxBXcAh4psuOEdFRmM=; Expires=Tue, 12-Apr-2033 20:23:30 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2780459291681590210; Expires=Tue, 12-Apr-2033 20:23:30 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yuidss=2780459291681590210; Expires=Sun, 14-Apr-2024 20:23:30 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1713126210.yc.1681590210#1713126210.yrts.1681590210#1713126210.yrtsi.1681590210; Expires=Sun, 14-Apr-2024 20:23:30 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 15-Apr-2023 20:23:30 GMT
last-modified: Sat, 15-Apr-2023 20:23:30 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2