firefox.settings.services.mozilla.com/v1/
54.230.111.7200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5G569F2YAzzhY6s0oY32EnIhJdqIdKOmiqDrdqZSUWXigijY9mPK8w==
Age: 46078
scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
104.21.16.120200 OK 2.5 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
IP 104.21.16.120:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (531), with CRLF line terminators
Hash 51b9d30e05a064b47aceb27155fe3aca
dedeb896a0b3b644f02f5c7e07ed976776f41e2d
94ff541f67b7313cb9cb6c5766f0b0cf78ab4a5d3451219934ec5f27e1169fe5
GET /?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/html
Content-Length: 2503
Connection: keep-alive
cache-control: private, no-transform
content-encoding: gzip
vary: Accept-Encoding
set-cookie: sid=t1~gyiixghfce3uj2zopq132yr4; path=/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w0LrOFiuv%2FdAZhWXGkn79K7f2xb0x%2Fjv9WUDQKIfmty10wXCpg5ridAnewTysvls9SJue6SyPwglPzNS69dhQEyOOT7NHMtNfC%2FrG2mR4v26rCj5IEW8neE5VTtQTzUVC33Zt7iXL%2BS36cyK0TU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb078b93fb4fd-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11081
Expires: Thu, 06 Oct 2022 07:39:57 GMT
Date: Thu, 06 Oct 2022 04:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17396
Expires: Thu, 06 Oct 2022 09:25:12 GMT
Date: Thu, 06 Oct 2022 04:35:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MEXrnWOMepwz4f2fnqx/5h1SobQoDR5NacFgFK4VwaoyRdAK77FGd+yAzFyrYwBZiCwzC+OhUQo=
x-amz-request-id: M4WNABDTC1VE02YW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 03:58:36 GMT
age: 2200
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 04:35:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 04:35:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scarpegoldengooseprezzo.com/util/flag-icon/css/flag-icon.css
104.21.16.120200 OK 3.1 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/util/flag-icon/css/flag-icon.css
IP 104.21.16.120:0
File type ASCII text, with CRLF line terminators
Hash 084be0fdc7d651deca8fecac9458bf69
7e9a9f67b3403c48ebdd848ce8cb293938279caf
f9da27653e155b28de3c8dde9144be29930a85b2981554d4d8c7d1b5fd1794dd
GET /util/flag-icon/css/flag-icon.css HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 May 2021 12:38:50 GMT
Vary: Accept-Encoding
ETag: W/"60a506da-9eb3"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f1lM9hkyrmBQMz%2BymQ%2B1XMO4tAp%2FWmQBzuVeFr2psHwKMnBn%2FJA8388eSRpJPdRJ3tPfsjl5KSE%2FK%2FgfFvvTRA73Ddzfs%2BP71Szkk2EBJD%2B9a6azoeeX1DjwR2Wimse2SQQEUpcA3YhWW1psHQ0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4838b4eb-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/css/bootstrap.min.css
104.21.16.120200 OK 18 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/css/bootstrap.min.css
IP 104.21.16.120:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 2b20c6c6b28b74225c3247c722df3a36
f6880a8c879bd867d9d80922b6bae05cc176fe89
a831fbe3f5866f3535b3983160ee491fa48615f5c4c03f8ce2ce530a210a712d
GET /media/dating/sinderv2/css/bootstrap.min.css HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:13 GMT
Vary: Accept-Encoding
ETag: W/"62163b1d-1abe4"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PW%2B77k3VwCOhMPvGeqAom40dru8C8b5rM6%2BC2A2EZZp86UwlC5z6fOMR422Wh1ZwOnOE4QoLrkGsHHyDvvdaJhEmFZOcGSPKDzp3lUw1vf2C%2F%2BUHLMnLW%2BFSBVQAkgIuPK7Sq6dpoH%2FKvKbArGw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4c3ab4fd-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/css/animate.css
104.21.16.120200 OK 4.5 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/css/animate.css
IP 104.21.16.120:0
File type ASCII text, with very long lines (460), with CRLF line terminators
Hash 0e38144e095ea8b8dd8052f74bf8e9ba
a866659b6f0d8321cf71a2d78da249725f7ce563
4b4b3afda7d0f33dfc4b125e5779ec85d093400c5978b1e786b2bf879232daa0
GET /media/dating/sinderv2/css/animate.css HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:13 GMT
Vary: Accept-Encoding
ETag: W/"62163b1d-ef04"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zJ3FLbnKWByN6nvYJsHplWfZ91YAXi%2FOVaDBhfBCLgTQb9Tb7myeIgFRjdzaMAjHz4QI%2FTC2K%2BRrDeZSzYAIUhCL9bLXWdzxswO1bLJV4lGqIwdHbpVvSQZu2znA9r2Sdaz45SK5tdqvZzG9jU0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4df9b524-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
104.21.16.120200 OK 3.4 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
IP 104.21.16.120:0
File type ASCII text, with CRLF line terminators
Hash 01c5b875b4da4001e63a035092634df1
b0de7f0ecf24e30215b223a0ca92810004de194d
3c0df8725b5d190c0fc1fb50dbd7169d81fc46be8a3615df3c3fe309a17332da
GET /media/dating/sinderv2/css/style.css HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 20:48:11 GMT
Vary: Accept-Encoding
ETag: W/"628d448b-4d71"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YVOs1uPxRDqGVcp5I4y%2FJfAFVTIUJZBoRvqvCZ75CKbTopu9Gmr%2FKh98jYWx8ETopfEeFBRfgQavWAP8e0V5ydJdDBrvxsOHWmY07P%2FnQT%2FGNJPubWaPZHydW609W1vM2gjbnwR%2B4MgJXIX%2FbQY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4836b4eb-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/css/vegas.css
104.21.16.120200 OK 2.3 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/css/vegas.css
IP 104.21.16.120:0
File type ASCII text, with CRLF line terminators
Hash 45b3800dfbdb5b55b1879cde3cc10de2
41bf98d006f7e95bdde5760c5b586b322cb4502c
900931001afe84cb77810b03c3a8c3ed83475ec4802f0e4af4f323caefdcc9da
GET /media/dating/sinderv2/css/vegas.css HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:14 GMT
Vary: Accept-Encoding
ETag: W/"62163b1e-4d6e"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=09iQ37seaSPuIi232l20ARmAhdM8h442KMiEcYPSjJ2fNXS5AVBWeWLz14X9xk73zKIhbh1syWk5Bc5JE%2FB%2B9DFg660h6VaU7hqzjNRCBt%2BoWzKXu0ydYcUGDyU0%2F%2F371sR3ayKAeNtZWPV47P4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4ade1c06-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 04:35:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scarpegoldengooseprezzo.com/media/dating/sinderv2/js/jquery.js
104.21.16.120200 OK 33 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/js/jquery.js
IP 104.21.16.120:0
File type ASCII text, with very long lines (32072)
Hash 682a87c5da481757f159d63a2e25c92d
b29aa32e42e08ef9442d9af314803b7eb4bc2ef4
f177e02ed71e840dfe40f8e7eb0f022471352158d8f4d9eeda38eb0e399a3ec2
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/js/jquery.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 09:26:02 GMT
Vary: Accept-Encoding
ETag: W/"62e3a7aa-16b88"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AL7sStrnQgBtg7XojGL6mp8v2Nwln2DM9fhqmSm%2FUQjN80C653IoqerwNoMkBEgCZQon1Svsnf36GSr9Bae4WTP3W0QpAMdnBVtBxTII1R1OwEimgZx4G5%2FAAoSOtJVHP1qeo6QBBuOTPefMLHQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07c4fe6b51d-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/cookie/js.cookie.js
104.21.16.120200 OK 2.0 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/cookie/js.cookie.js
IP 104.21.16.120:0
File type ASCII text, with very long lines (1709), with CRLF line terminators
Hash 4d1d79e8f4ae1cbda0658a0649f16fc4
31b03630d65b8ad7656f257be34d76ce8439cb1d
0afbd56e60b3661a9c062067d4047ae576c5d0acf6418a8eb050ab276923e00b
Analyzer Verdict Alert fortinet Phishing
GET /cookie/js.cookie.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Jul 2022 10:04:53 GMT
Vary: Accept-Encoding
ETag: W/"62d924c5-10a8"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d5gOHB8Fj%2FwvnrKNmBN%2BlwYe8bonKzsN6SYjzMXDXLP2ivT%2FTFOi7zfmU1aVQbJb4EFu2YO6uQF0lFZ7w3jj3C3cGhiJ6Igx98IP7Gaovgs%2BMrERt%2BuobhWqcz6WMg2BYuqYDB4oGO9kJKnxfm8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07d2ce6b4fd-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/util/utils.js
104.21.16.120200 OK 2.8 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/util/utils.js
IP 104.21.16.120:0
File type ASCII text, with very long lines (641), with CRLF line terminators
Hash 90675705687ac18d981d39a7bd712c75
9b628641be9edbd06ae7e305e0fdb83aaa9f1f17
6acc3b1ff4f0f218837dcd383d1f084eef52e254ac9a37495855d1a1962299b8
Analyzer Verdict Alert fortinet Phishing
GET /util/utils.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 09:09:07 GMT
Vary: Accept-Encoding
ETag: W/"62e3a3b3-1d58"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qhp0H5BTt4SzWrof4X9yr8IjePWjPbLruPThkw28nXzXalCH1kmzWqzMz0kjHmhNpXWVpk%2B%2BcQnmH%2B1UzEv9PFQZJ%2Ba5tgSSQtNJugPcfRttHe9OLZsK65KN4Z4Q%2FAdYzNMlIZbSUsI5Mrn5olU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07d2e55b524-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/js/vegas.js
104.21.16.120200 OK 4.4 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/js/vegas.js
IP 104.21.16.120:0
Hash 5fda567794aa88ed161c6c7db5bebeda
a9d089b5ca226f7b5598395fbdb88cf5ba67f576
b674e6bc273ff12be71100433190c0bc32dedd22f2b059c31153c487b4a19800
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/js/vegas.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 09:26:02 GMT
Vary: Accept-Encoding
ETag: W/"62e3a7aa-5520"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cliQ5HSucQEuSROwe3vC%2B%2FnyYkVGTEWePLoAl9y4B2UrXm%2F8o2EDAiicKJ6DpKCymqitogPoPcg6gbWnDOWGG3ebC3VuWp8r1GXHywlfjZoJ0%2BczkGiFosxD2oF9JAe0DVjC6SiFuFOd1XcYM10%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07ce89eb4eb-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/js/timer.js
104.21.16.120200 OK 292 B URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/js/timer.js
IP 104.21.16.120:0
Hash 0ac0c06663d3bf65414ccd36275902d0
998cb10b780546c405805d28a3006f2176e52aa1
1126936c19fd26405fd9ed68c63a43812e638a812485fb177124aa44093792ad
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/js/timer.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 09:26:02 GMT
Vary: Accept-Encoding
ETag: W/"62e3a7aa-26d"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=paBTWf2rWVYv9w73CY2Q6yrPslcAwyQgnpx1bk5iam3L4nWSB7s1wEyMM93o8vFeFgV6O7OOj8s1oZ%2BvBa9b%2BjgiGhFh39JpMi%2FQfUnsmWEfRLEB67JcW4YOdIKme9Fid7SLcXNr8ZHYKsiJ%2Fp4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07d28c5b4eb-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/js/trls.js
104.21.16.120200 OK 6.3 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/js/trls.js
IP 104.21.16.120:0
Hash 320370c3bc32d7e2c59944888480c2e3
a28fe1d2c76baa052186b8af4934e43a265acb47
f86d4fa252c42e567efe73dfbe2aae7694539de023df82101bebf29e256c8eac
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/js/trls.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 29 Jul 2022 09:26:02 GMT
Vary: Accept-Encoding
ETag: W/"62e3a7aa-4394"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rcCaUx3T%2F2QESlSBKP89aJGlZF4czFtlqLupN3RKDGGKt9piOjJYzugw%2BMc8fjkSkaiDX3drZQrJPaqR0xFH6QJ%2FQTLB3e%2Bs57BjnQS4Jk8hYTHC%2BHEgHGkkhT3ZdVSUIhb6TMgsLjsSDwGibBA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07d3b611c06-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/bb.js
104.21.16.120200 OK 402 B URL HTTP/1.1 scarpegoldengooseprezzo.com/media/bb.js
IP 104.21.16.120:0
File type ASCII text, with very long lines (639), with no line terminators
Hash 8e67e156b7ce6080eba87cea3975485e
898323755be54ae3d02f8c84713f67fcd8fad7bb
3ced4bdd69a7c07b2923e8554fad3926ff05f861b2141cf072c9b643d5593915
Analyzer Verdict Alert fortinet Phishing
GET /media/bb.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 28 Jul 2022 18:00:18 GMT
Vary: Accept-Encoding
ETag: W/"62e2ceb2-27f"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ng3ILxZcyd0BqjcDpEs%2F78p%2Bbs%2FOoBztBo%2FM6G%2FRkRiuxKhX5IN4t4s9gx%2FFNoCps7P8KQ8Db0wiEuSnf95uBTCfQx6srAkqoL2zsnfeCi%2FZNGh%2B2FhQvZBNMWXwYv42MKZ4l2zrAPiq5gy3wb8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07d9893b51d-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/exit-new/exit1.js
104.21.16.120200 OK 1.3 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/exit-new/exit1.js
IP 104.21.16.120:0
File type ASCII text, with very long lines (641), with CRLF line terminators
Hash 615f257c95148f1d6186f0e0dff56bae
82cf23de34a766a86109c16a542e8980c8615548
0bb43f0b72d686ecc0f363f437edd99b8558c80173adde7a146c48e122ed75ff
Analyzer Verdict Alert fortinet Phishing
GET /media/exit-new/exit1.js HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 May 2021 11:57:39 GMT
Vary: Accept-Encoding
ETag: W/"60b4cf33-d91"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TBLs2TS8cD3Oxrfytf7LGSZ7GYLPo%2BFplbwk1NHgoP1REVUB07F2%2BIiuqPjsXe3i9l8765v9Z7doAM53%2FzyohZlPTRc2MAgfWfSXhoN%2FojbxaclI6FGJIU6UMK%2Bjka%2FXebU3CwJA7unZ3iYM%2F24%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07dcd40b4fd-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/images/logo-loveme_white1.svg
104.21.16.120200 OK 2.1 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/images/logo-loveme_white1.svg
IP 104.21.16.120:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 85decb7db618b4b7da869792f74f4a8d
66d38afca00ae3af9257046d18bc21e61742029a
840d4a194f0fc21aaf14765897a8fe5bf2081c8f34eaf2363aae4e54b4dec7cc
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/images/logo-loveme_white1.svg HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 07:36:10 GMT
Vary: Accept-Encoding
ETag: W/"628c8aea-11d4"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2j1y1lva6Tx0Rzy3uvF%2B8MUcrK4TFwAEt%2BH0ym5HyV8dXhzMqFjTvHc7PhF23hnoqY294W8DGiBZQ6wJu9ErAwpufQ0Si2DhrhpBPvo4eqB85rKE61N%2FnAXdjFX1K9G2vfvhKBGH7lHugWCnumY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07dced2b524-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/5c92d5d3e39a260d5dd06ced7eca070d.woff2
104.21.16.120200 OK 22 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/5c92d5d3e39a260d5dd06ced7eca070d.woff2
IP 104.21.16.120:0
File type Web Open Font Format (Version 2), TrueType, length 22284, version 3.786\012- data
Hash 5c92d5d3e39a260d5dd06ced7eca070d
64df09fd462e6bb76890b7782578777b901f2003
2a99c11dd137ef8b515b3a95d2bdb38ec99bf745b2865196aa910628bcb144b9
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/fonts/5c92d5d3e39a260d5dd06ced7eca070d.woff2 HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: font/woff2
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:14 GMT
Vary: Accept-Encoding
ETag: W/"62163b1e-570c"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iPdryGMVnjzQx0NH3Dy5jYy8CbAmBFu78bOpkHrHdoCAVsTrdARWZCxjbCAUWdboi1YlNI5ZRNCbI79IjLZYy%2FVbj5E%2Bg4%2FJagmyRMwPc%2FfAL3236co8WOoRzrv3hyYhDvpHkBOfZe3ZOVSAHxA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07e78feb51d-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/bcf3bb1b7f7a3436181788e748bae013.woff2
104.21.16.120200 OK 15 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/bcf3bb1b7f7a3436181788e748bae013.woff2
IP 104.21.16.120:0
File type Web Open Font Format (Version 2), TrueType, length 14772, version 3.327\012- data
Hash bcf3bb1b7f7a3436181788e748bae013
8ee24d38f618f070a43619f1d471d90f17d666f1
42e50c76c1bf569cb8b597ffc8cdd18a6f4a311832f46fdc1489145027550781
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/fonts/bcf3bb1b7f7a3436181788e748bae013.woff2 HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:16 GMT
Content-Type: font/woff2
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:14 GMT
Vary: Accept-Encoding
ETag: W/"62163b1e-39b4"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QP2ciL2ORuHwh%2Fvk34siX16%2BLljSKDHZpZXSYhSdyGVLiUYUihaQXI%2FdtrhXwHNlvRrTRgTrStLNgs5hyxU6tAikIA7gVPE0TkFniyERNTC86uVNMndvDQHSzbRxyk3Ze4s6smv0e%2FxeS%2F8NZ8Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07e8c051c06-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/b796339b324ec08006ca04dca90284cf.woff2
104.21.16.120200 OK 22 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/b796339b324ec08006ca04dca90284cf.woff2
IP 104.21.16.120:0
File type Web Open Font Format (Version 2), TrueType, length 21796, version 3.786\012- data
Hash b796339b324ec08006ca04dca90284cf
4283d779705f09e68939572df76c52cb41a3ec68
d65bbca022f8953936d6e60b9a59fc27f9bfd74ba96257ffe14df83b3d8eb0e3
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/fonts/b796339b324ec08006ca04dca90284cf.woff2 HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: font/woff2
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:14 GMT
Vary: Accept-Encoding
ETag: W/"62163b1e-5524"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rqSzeR7iuPD561krKZlNhGLuKHJjMhA7yepTrbKOnb7zISK0BfdvP5DEqJ55yx4VBXV7KikcijLj3j08fUNTUrkqC%2BTXGWaLUd1voPgL44fJxxOIpwtz3mDkHeMv15Pddes%2FT41XrthkHcNRmPA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07e8977b4eb-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8b90f69d1a2d4b0d5ce84bae500824fb
514bfca05d336c4c2225cc89b83838fe86579409
60f4e8a64f9c652ecf5b0d5c518c84d6f02d1dfe104d5fd5514e4b4bc529ac2e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60F4E8A64F9C652ECF5B0D5C518C84D6F02D1DFE104D5FD5514E4B4BC529AC2E"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10152
Expires: Thu, 06 Oct 2022 07:24:29 GMT
Date: Thu, 06 Oct 2022 04:35:17 GMT
Connection: keep-alive
scarpegoldengooseprezzo.com/util/flag-icon/flags/4x3/no.svg
104.21.16.120200 OK 331 B URL HTTP/1.1 scarpegoldengooseprezzo.com/util/flag-icon/flags/4x3/no.svg
IP 104.21.16.120:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash c7ecfe59439b5fd23924fd206cf2fded
056fbd2b17c7f08bfb480d21973a96bf86fbd72a
4027f3320608508754640a6de4cb1cdabdef4654b5a214e875c134802345683f
Analyzer Verdict Alert fortinet Phishing
GET /util/flag-icon/flags/4x3/no.svg HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/util/flag-icon/css/flag-icon.css
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: image/svg+xml
Content-Length: 331
Connection: keep-alive
Last-Modified: Wed, 19 May 2021 12:39:17 GMT
Vary: Accept-Encoding
ETag: "60a506f5-14b"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1ymre0TSB9q92IURpPzH97MRhUAbO5iwSY0avCAxoq5Xxsk%2FsrA1%2F9zSvThWsNguDqNiXXhqKAeM3Upp%2Fk5FIYwOmC688DKP2yAzth2%2BQHjUKQu4eXZQ7EstxW%2Ffae9%2B7ttEcPhyMDDXxdPiudY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07f7c8d1c06-OSL
alt-svc: h2=":443"; ma=60
data-jsext.com/ExtService.svc/getextparams
54.37.5.177200 OK 515 B URL HTTP/1.1 data-jsext.com/ExtService.svc/getextparams
IP 54.37.5.177:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (472), with no line terminators
Hash 2e2a7f61ae1efa530bbcebf1693ac292
37767c8aa04a870dd713da7cb45e451b4b24d3b9
f41890a855fd526c0e7d9702328729cea951b676eec1056e0cdc7250a49e9646
GET /ExtService.svc/getextparams HTTP/1.1
Host: data-jsext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://scarpegoldengooseprezzo.com
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 515
Connection: keep-alive
Access-Control-Allow-Origin: *
scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/2e5fca371696cab9fb5a9fe214c1319c.woff2
104.21.16.120200 OK 22 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/fonts/2e5fca371696cab9fb5a9fe214c1319c.woff2
IP 104.21.16.120:0
File type Web Open Font Format (Version 2), TrueType, length 21908, version 3.786\012- data
Hash 2e5fca371696cab9fb5a9fe214c1319c
4bd3fe039b2f65d10d1b8c1b30c7962bdc313b7a
f8b1a05998ba7e93e5c9f41b004496a3576b8d10d9fafc2f7014894ebc3e72e9
Analyzer Verdict Alert fortinet Phishing
GET /media/dating/sinderv2/fonts/2e5fca371696cab9fb5a9fe214c1319c.woff2 HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/media/dating/sinderv2/css/style.css
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: font/woff2
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:48:14 GMT
Vary: Accept-Encoding
ETag: W/"62163b1e-5594"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QOtE6nvD%2FZ4ENQlCnq6LrnyH9z%2BQ3pQ5kkvQqbfkkBUnc6ELLmBs5J%2B94GzYR%2B%2B6AgJzraDNJwNvF9CN60gty1Gon3daHzc0tmIZKzb2wUd0ZTBFG6h9Fm7JE8jQsN7RY%2BhEPyOfEc4aJpeFiu8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07f7fdeb524-OSL
alt-svc: h2=":443"; ma=60
scarpegoldengooseprezzo.com/media/dating/sinderv2/images/scandinavia1.jpg
104.21.16.120200 OK 103 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/images/scandinavia1.jpg
IP 104.21.16.120:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2018:12:04 15:45:49], baseline, precision 8, 1980x1080, components 3\012- data
Size 103 kB (102831 bytes)
Hash 8df778572c6a0f3f515f71450936feff
ff9af1b6431a50d3c9fe0befce132183f70d1382
bf0a861e87f422ff27a6b9d4b231e4acbc8d00e8c7ed2d5c4b4d6389bc6893fd
GET /media/dating/sinderv2/images/scandinavia1.jpg HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:51:24 GMT
Vary: Accept-Encoding
ETag: W/"62163bdc-1b92f"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouhjz%2B%2BOnkCVAwjwI%2F7dx%2FQQQXEwSWR1QVO46Z23TdnBqii6%2FeRcTdkJd8eJaK2ENn9kdyCHctx5pMBul89%2FMj3LasDAAnJjyjKh6XtSo1awP0LrNwS4SBmGgc4XJNBq3gSMCEDyMlBKzDetvIo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb07f699bb51d-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.7200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.7:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Thu, 06 Oct 2022 04:29:41 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 06 Oct 2022 04:46:21 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kxihz3lzUVrr4yEjVEEHzxEXtLnPE96MSAxeu-r0F25DPLICE7qqog==
Age: 336
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 04:35:17 GMT
Last-Modified: Thu, 06 Oct 2022 03:29:28 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
scarpegoldengooseprezzo.com/favicon.ico
104.21.16.120200 OK 0 B URL HTTP/1.1 scarpegoldengooseprezzo.com/favicon.ico
IP 104.21.16.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:17 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
last-modified: Mon, 09 Aug 2021 05:32:32 GMT
etag: "636c1f3df8cd71:0"
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iuV5yGOZGI4nl7zJ0DpD2b8jIM%2ByqLsaADf841mPd%2BQPxEDbcfg4eZLfS2Dv%2FLAAFXlRu7Qi%2BTrCapbFuMhnF3gcVnk4dswnl9YurFLpHnMFfVsG1e%2FksVWc%2FJfBYvzeh0q7TAQzV2bNxPzzg1E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 755bb081bb05b51d-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Bcj7lnIPUvH99l/mmtcGkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UXmHFLeVvX4AxcGCJNkfZbUUU/I=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6686
Expires: Thu, 06 Oct 2022 06:26:45 GMT
Date: Thu, 06 Oct 2022 04:35:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6686
Expires: Thu, 06 Oct 2022 06:26:45 GMT
Date: Thu, 06 Oct 2022 04:35:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6686
Expires: Thu, 06 Oct 2022 06:26:45 GMT
Date: Thu, 06 Oct 2022 04:35:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72ad6f9b79e7a3d11e3ace6b0e969614
a9cd62230d4aabfcc2e8b2494e687d854254113e
1d59cd22b3316da6f1d44076089ba983faed5327d174ddb3cb3d58f487ccae51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: 01497827-07e5-4129-abf2-120b00eed8c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPs5F1LoAMF8Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df985-4b0c175142a6ace915d5e5d2;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: QElSCxuAj2dM9Psp2_fPTSi1goaNKkylf7D9ITOplorOFLIGIV332g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:46 GMT
age: 24153
etag: "a9cd62230d4aabfcc2e8b2494e687d854254113e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6686
Expires: Thu, 06 Oct 2022 06:26:45 GMT
Date: Thu, 06 Oct 2022 04:35:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 23516
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 25093
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 23783
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 03:50:38 GMT
age: 2681
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e949d36-f543-4757-9bc2-dbfc1a880438.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e949d36-f543-4757-9bc2-dbfc1a880438.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2d931d10ab5596a26616db46797f248
03bc7fa2fe6a4b291dc3ffb3ace50e21cf6478f4
15ac08b069bf5128c8def9d261ce1bd3834fbe7bbb17c49b69c07330a9f325fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e949d36-f543-4757-9bc2-dbfc1a880438.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7597
x-amzn-requestid: 1c7002f7-2369-4547-82ff-b873f7b055b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmFarIAMFTtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-785f9ddd7c8485be32388494;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9EP_hd2oRC9R-2ihddWSJIUV5xTGSiUOxNfAypAFXtiyU6ofgKVGzw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 04:26:45 GMT
age: 514
etag: "03bc7fa2fe6a4b291dc3ffb3ace50e21cf6478f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
scarpegoldengooseprezzo.com/media/dating/sinderv2/images/scandinavia30.jpg
104.21.16.120200 OK 213 kB URL HTTP/1.1 scarpegoldengooseprezzo.com/media/dating/sinderv2/images/scandinavia30.jpg
IP 104.21.16.120:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2018:12:04 13:04:35], baseline, precision 8, 1980x1080, components 3\012- data
Size 213 kB (213059 bytes)
Hash 015fc42b8a3f50af271478e8144367b0
0198a2acb939b00ed9ffabece584c2961fa8bc5a
daee3f8f56a1af41a780d148a07962d6baa9290c20258cdb5206c8c9de1fab5e
GET /media/dating/sinderv2/images/scandinavia30.jpg HTTP/1.1
Host: scarpegoldengooseprezzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/?u=fy082k7&o=mb2kpbt&cid=1cp7lh56agt84&t=p2pool.co
Cookie: sid=t1~gyiixghfce3uj2zopq132yr4
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 04:35:22 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Feb 2022 13:52:27 GMT
Vary: Accept-Encoding
ETag: W/"62163c1b-3758b"
Content-Encoding: gzip
Cache-Control: max-age=14400, no-transform
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=njXsz6zOmvkONTVtgevm3q%2FN%2BoNkS71AgFGzLjviu7wU9PiK%2F8wz4beUxkSi8VuyWD%2F3g7hmBl%2FaAz%2F%2BjGen3iXwwQVMFZY5yAyDlioY%2BsQz0jItPDc8WqIFLL%2BiEVNa9L6nYT4jk0xkdcUi058%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 755bb0a19dd0b51d-OSL
alt-svc: h2=":443"; ma=60
fonts.googleapis.com/css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic
IP 142.250.74.10:0
GET /css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://scarpegoldengooseprezzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 06 Oct 2022 04:35:16 GMT
date: Thu, 06 Oct 2022 04:35:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2