funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
104.21.83.86200 OK 985 B URL User Request GET HTTP/1.1 funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
IP 104.21.83.86:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa41a26b8f981f460455e177f09bc447
719bea631f4a5cb01b662afff876fb8caa723da6
76a618c51fb564567e9a19942736c475dfd939a104a55aa021517972c79ffc79
GET /nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500 HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Apr 2023 06:13:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: trbarid=6696452610032290780;expires=Fri, 11 Apr 2025 06:13:00 GMT;secure;HttpOnly;SameSite=None;path=/;Domain=funkydaters.com
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4rFMTNTrD6rEpvChVJa6weDhAxevrK9pmRKqZQAlDnsPV6DLr9cssagVaXBNkOuLV%2BiKMEeVpYpe7eNTEnzzgToEkI97gBMiJrqBG39baGXAlHYVeJHzFc4Vfrx8Vi5%2BIqk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b6952266dfdb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
funkydaters.com/static/js/build/bd.js
104.21.83.86200 OK 3.6 kB URL GET HTTP/1.1 funkydaters.com/static/js/build/bd.js
IP 104.21.83.86:80
Requested by http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
File type ASCII text, with very long lines (8033)
Hash 896fa747a8832e6a6ac72bbbcfc917f6
67dc40632c900a9f84280f0898b308b8a6b3e3a5
6e8a3da2d10de2291c78a9b5c4924383914596d719f5a0390f8a4e38a78d9c2b
Analyzer Verdict Alert fortinet Phishing
GET /static/js/build/bd.js HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Apr 2023 06:13:00 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7b6952273ee8b4ed-OSL
Age: 47743
ETag: W/"static/js/build/bd.3ad9d77bdd.js"
Vary: Accept-Encoding
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iLsFPEK2tz%2B3CjSmqCc9FLU7Dm5Gno67wiQI3qby%2FOmJQRB%2F1OJF5kz%2BJR9MOpiOTHiAsycMCWX2aRaKDY51pPTto6XeAsakYXKZZazTq3qU1gBLWze6wkQgBvA%2FquhvgBc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
funkydaters.com/favicon.ico
172.67.218.62200 OK 47 B URL GET HTTP/1.1 funkydaters.com/favicon.ico
IP 172.67.218.62:80
Requested by http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2f3ca1d38e8b18ef00c4a0eff0889cfc
2f28ed1ccf7c08cf22491757fe20385249db162e
af9dbf02c85319fda5ed6e97828a8328ce87a4a11e2a95d506654bf7dee244f4
GET /favicon.ico HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Apr 2023 06:13:00 GMT
Content-Type: image/gif
Content-Length: 47
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tU8WcjWWk2bSvMAQeFGCYdlhOmuHPlC1Y%2FxUPIKe%2BdoFTk8hVj8yuAkd60uri8VK9ADHD0GacZaXDWTRlxQF0jVxKUR2xN5FXtcIb%2BJ%2FJreb%2BmHMqBvPththMuMZMtvZqxE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b6952282e0e0b65-OSL
alt-svc: h2=":443"; ma=60
funkydaters.com/nAMA/gombc?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500&bdata=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&bt=1681279980&bth=27741429
104.21.83.86200 OK 97 B URL GET HTTP/1.1 funkydaters.com/nAMA/gombc?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500&bdata=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&bt=1681279980&bth=27741429
IP 104.21.83.86:80
Requested by http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
File type JSON data\012- , ASCII text, with no line terminators
Hash fb0cef191f838aaade9c2dd91cbbf476
99719a2bd85cd67505ab74170e6588c4a4b74311
069e63fff9facfa4094aecc37486a490e7b86e9a63f9f9b8583b1c63a65c4b94
GET /nAMA/gombc?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500&bdata=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&bt=1681279980&bth=27741429 HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://funkydaters.com/nAMA?prid=w8i9bvc1siknmuuninaq8b2u&usid=1549_3965&tbsession=6696452610032290780&c=1614813500
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Apr 2023 06:13:00 GMT
Content-Type: text/plain;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2B45gSU0hXtckqhMR4gZCtADPGMrWO%2BPJ0Ya9m2%2BSRXklwr5izcprseu5pOFjH3ItruRXVRrwCzf7jK9xG6iSZxzQ2qnaPPR0EyDd%2F%2BTdtKqhXIyILoti0kKdD5%2FxS7g2H4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b6952278f45b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
104.21.13.110302 Found 0 B URL User Request GET HTTP/2 click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
IP 104.21.13.110:443
Certificate IssuerLet's Encrypt
Subject*.click2be.com
FingerprintE1:B9:2B:91:D7:30:89:2B:A1:8C:6E:A4:99:79:3C:75:97:F7:37:41
ValidityWed, 08 Mar 2023 15:01:41 GMT - Tue, 06 Jun 2023 15:01:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL= HTTP/1.1
Host: click2be.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://funkydaters.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 12 Apr 2023 06:13:01 GMT
content-length: 0
location: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: 3d3668c9-eba5-43ab-966f-e930046a5690-v4=8yWrMiEw56KQEDwd9ZP0Ln5HuwtaAm390z39A4QfGkg; Max-Age=86400; Expires=Thu, 13-Apr-2023 06:13:01 GMT; Domain=click2be.com; Path=/; HttpOnly
cep-v4=3zjrpFxRWIfDqP-5aDw_lbU3vpPDo8PC-VFMr5YfSt50f3vt9e-7aOlITSqWenwVoB3awiewat0p46mUiy7hvLoPYOKvBq3CMe_XnAUUIub0-VeRX43ux6xYsbK6HcD8KUH_mc2za_cx2Oe6-KgJDfcYyai7VnwOP7g7oyc0NK-EyHBxSpWo-v5lxSOiZ7CIHTe-aIprkPzsiQ1khGlmTxIW5JwvL2h2AABwabshDUH8S5SSO8pov0fNAn39IQ3FGk_MAZCpVDz0Y_LrTThlJThsNfMIesJWXesYQMiCN2W-7Jn0FEZDivQIWPTimmvLDueNwfiFyrt2oboT2cVpsPQCX6IH9Eh_QuvgImXsgzeYJFjHLpvQjIJOAeGukIAmZWU8k--6_7Tp3b9HE5feXBOs0v_DXcbj3Kru7nCPqUWZYL9t6Vwa9-bfhDWRYwntjzIuRl22xGgMGnyZdFYZTQ; Max-Age=86400; Expires=Thu, 13-Apr-2023 06:13:01 GMT; Domain=click2be.com; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q9VupQEVeuxd0PI7E7McXxVv7Ywrv73%2BFnLm7Do7BUnXIfic5g8mO0jZgMy6V8juIYqkaFQjHMi%2F9PCsBI0XwBMGIu8EzpzRvwm%2BZwyzRd4fn9W%2B3Qox7QKsoLwVRZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b69522d4f62b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/images/1.webp
172.67.207.218200 OK 9.9 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/1.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash f9667baeae293f7de7ed52f02883eacc
c72fd31890c8d837e34b30062a3c1b1a07ed098f
2a8229de9288671f333b84dff718a7c56ffa2fbd4aa75877ada0df80c7ffad0b
GET /10sec/1-970069/images/1.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 9916
last-modified: Fri, 21 Jan 2022 10:33:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qDLH6TEsZE2dDj9gq%2F%2Bp%2FolNGyCJrHHjqjMt9UF5eBzMcxAidGkvfx4COIbuXSjuNiQrxoaG5r21HyOUli%2BEwt5OjZriFePS%2BVt5w0pZ65p43IGvPq2kfM%2BrqpS6t70ph%2BoF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952300f4cb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/3.webp
172.67.207.218200 OK 7.8 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/3.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9c9960a8e11627e1fe63aa8e4c8104c4
8734fe85e15279e4d6a61bf1feea8e43ef14fea7
da2cea446788dbe33ca217928eab21bd5af70969ee29eea4e260690ed8abf21d
GET /10sec/1-970069/images/3.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 7798
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6dFeVGRlntFJTrIvcyP60bh2bSqfMOINPvekGoonoqb8Fqd1vPIU5guQ2DsFTubC1f9AKCCb5IIZOYDh%2FwqMr5IRwOiqJKNodVXrbCHiR6QrzXawUFumHR7q1t9ENcCouy07"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f59b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/2.webp
172.67.207.218200 OK 6.0 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/2.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 61de9e4481929fb6a2fac8446134f4da
c2319f2f4936ae8e9ebd4579612d247a68952ee9
35b1f21d88111c721ff353f0bb92c83fac39a733f43edbd152e32aabc7e7cd0f
GET /10sec/1-970069/images/2.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 6016
last-modified: Fri, 21 Jan 2022 10:33:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=86jkbAXppHgR57MjMLOwL3RJ%2FP2LbCmq7QOA%2BKPPUz2FpQgQPf0dER8nTw6bEo1PyIZHtNIRbF3RP%2B4%2B09hPnXS%2B6rQ8Ojjl4HPcTTUfRJny5qxJGq2u9eW7M6jERjljcmr6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f58b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/5.webp
172.67.207.218200 OK 7.5 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/5.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8a43c2df6b219864d406968e5b650997
568293170f9dd1d56a9593235a99e69415f6ba69
02194bb79787252a5ae0d0dd0fb9b1447abdce5de8c123a01859ee27022c79b2
GET /10sec/1-970069/images/5.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 7500
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ttf8Qjb5%2FsdjIXI1RWkKQeJX3xh%2BRQRQ5r8QXVT2vL3BOMrUozyZomuPcFtbst%2FBQfd7u%2F%2B0RGxjXUc45BtBpKijJgbneg5nnMRfD1IJ%2FOtUAdtkO6kHy9Er8rC7KlL2TCBO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f5fb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/4.webp
172.67.207.218200 OK 9.4 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/4.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 54c584fb147986b9fc4c06c6c9982eaf
b9f5eb3ecdc1dd0267add3e58581f842e7abc3ce
b680db4a34a67b7f4c66800ac10a2a988f9d4b81891e223b7d70de729e1a58f0
GET /10sec/1-970069/images/4.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 9404
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2KX4P2qn1SwmcF7BvLk3KxZj5z42dE8xzCrKackZbE1nDRUwLhr0TXLNaAatCxf5TCUOEyYzxdPu45thnU%2FJBrsFWM5WYiqh6cdl85R5x2SK3QDs0YVDkPe7EIOZVuBnS61z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f5cb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/6.webp
172.67.207.218200 OK 6.2 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/6.webp
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9c62d6594ceab47841fa97bf53233b9d
07e9eeaca011d3ea19a9009aeb5bfa3aeadf578e
74b36889567c3b18d25161af62d740696987cc6d33cbc6c5941f923963866753
GET /10sec/1-970069/images/6.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: image/webp
content-length: 6202
last-modified: Fri, 21 Jan 2022 10:33:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3003907
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CvzYNQraQkZ%2F59VjOpHqJyM714igBbG91OcH4KIwZFAMOwQsuQ0BVgOMpnyrLgd6gzjF8LOk19R5dkEuRwQggppYaWOYrn4NLy4iRi6lsBC0rHEDSGVadWAqT6S5EDDGOeNg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f64b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
static.production.almightypush.com/mng/subs_window.js?ver=1654683980
54.230.111.72200 OK 20 kB URL GET HTTP/2 static.production.almightypush.com/mng/subs_window.js?ver=1654683980
IP 54.230.111.72:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash ae593f4be1dd1f0710123918b49c4933
66fbe30bb873e0a47d3d72e737d68aa4b6916c26
fdf9ff3f74dcf11d0fa456dcd53cb21550f67f0cfdc11dc29bef595f07b56206
GET /mng/subs_window.js?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 19491
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 12 Apr 2023 01:22:29 GMT
etag: "ae593f4be1dd1f0710123918b49c4933"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _MBOhPT7WRnoCoyy31rOf4UmF-nKGFo7Yk309cFAxQJaYgd-T2TeYw==
age: 17458
X-Firefox-Spdy: h2
static.production.almightypush.com/mng/channels/init.min.js?ver=1654683980
54.230.111.72200 OK 23 kB URL GET HTTP/2 static.production.almightypush.com/mng/channels/init.min.js?ver=1654683980
IP 54.230.111.72:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash 3b6653c5e8ba364d3a55401890bfcd78
ee999f16f02d41b93d1db2bf3a489fab1034e67a
a598ef0100e73e2d81969e0a59374e915ccfe7c312603b4b1375bbd0e75498d5
GET /mng/channels/init.min.js?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 22787
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 12 Apr 2023 01:53:09 GMT
etag: "3b6653c5e8ba364d3a55401890bfcd78"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rgh-JC65O19hlAvELGtWpD9lGGsyOVM6PVLqx0g628kymvGIBK0uZQ==
age: 15597
X-Firefox-Spdy: h2
static.production.almightypush.com/mng/subs_window.css?ver=1654683980
54.230.111.72200 OK 6.9 kB URL GET HTTP/2 static.production.almightypush.com/mng/subs_window.css?ver=1654683980
IP 54.230.111.72:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash bd7dbae15f904a4e1213439ebfefddbe
9f7a33b3d6e7965d8b99f0ff56cbf2e2ebb8f78e
30c08f3bb42d9a16155c65fbc952430048e4a84be70b98cb989b2dc977b49f8a
GET /mng/subs_window.css?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 6945
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 12 Apr 2023 01:19:41 GMT
etag: "bd7dbae15f904a4e1213439ebfefddbe"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nUB4fVAMvmn-C6nlNS4Ye98X64D9OZjA1tsqIdF9L2xpqtrzjRTS5A==
age: 17631
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/css/style.css
172.67.207.218200 OK 4.1 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/css/style.css
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
Hash 199755860f7a587d2b347db55b0005b6
ded4647c42a029067daa58a4df46d901a538c5fb
3c97bc0027800929c7c526d283410266ed099cdfc464a635e1545cefcd20647b
GET /10sec/1-970069/css/style.css HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: text/css
last-modified: Mon, 28 Mar 2022 13:19:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 410065
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=etUjXN%2FwIN4bQwOWNyzIPkfJ%2Ba7cg9EG1d5%2FyH%2Fz1mWE4dJhMls2VBwJVfmj4YQIx%2FaUqNji2Bu1Yg7qQWhfQx%2F6Up9Hs7uKewDaWKMa%2FZ6xIk2A%2FzRSEfQ3enavXLVe%2F4kI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952300f3eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Lato:100,300,400,700,900,300italic,400italic
142.250.74.106200 OK 955 B URL GET HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,400,700,900,300italic,400italic
IP 142.250.74.106:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint77:43:87:91:D0:0A:64:BD:84:1C:9A:F5:10:86:8E:8E:04:F1:F9:A3
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
Hash 931d5c77e000bb108b5273edc722b944
a2ea990809f5ec32779434e01d8db3c0bddaa046
eae2d9aa1dfb307a401a952d904dc1515aa8a66d39c8d7aa22e463b98b0df03a
GET /css?family=Lato:100,300,400,700,900,300italic,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 12 Apr 2023 06:13:02 GMT
date: Wed, 12 Apr 2023 06:13:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.production.almightypush.com/mng/channels/sw.min.js
54.230.111.72 6.3 kB URL static.production.almightypush.com/mng/channels/sw.min.js
IP 54.230.111.72:0
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash 03b71607d0eb65df0c65a3d5fece3706
871375fc1daff080ef7657a83058cbbe674d62e9
1a59bbb1f7d210cbcad77e4fa12797ac225f574c2d65b72ed3695719f6e84caf
GET /mng/channels/sw.min.js HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6277
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Wed, 12 Apr 2023 06:12:29 GMT
etag: "03b71607d0eb65df0c65a3d5fece3706"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YhZilQPNKp1ANSEsSaN0eRDSyrbbiN-Y5qGX5e0l1D_1WxMlT6q2Tg==
age: 2707
X-Firefox-Spdy: h2
bestday2love.com/worker.js
172.67.207.218 545 B URL bestday2love.com/worker.js
IP 172.67.207.218:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash cddc780d842c56650e6ed51a2e3f78e6
2c23bda6cf8ea51c3f686c2936b540729a1895b3
00e36ce7c5707115f2c45a1441a27c3d12bfb233c427b1775ea493c57cddd8d4
GET /worker.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: application/javascript
last-modified: Fri, 21 Jan 2022 10:34:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 410062
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6z9bkkP5mipU%2BA%2BSNWK%2BQWZhJrLOLt1gEtQHQlL1pcEy9oWa9ouASgQFTXbIeCLKhVRsthTUQKzUyMeWfS0yAa2UNSF6In%2BtVIbnmGeheHAHqNahtumDrD1h3HuStHnSTmur"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952349dbcb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bestday2love.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 09 Apr 2023 02:29:26 GMT
expires: Mon, 08 Apr 2024 02:29:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
age: 272616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 050c7347515fd2221f7d297b33a9aa5c
a8d7b94084ceeb054c3085c681f8cd5f72bd4fc4
34edc6a07cd8fd2117cb12821723b2e71ddfb2434bac56c73515baf1a81ab837
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Apr 2023 06:13:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alexatracker.com/jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid=
172.67.204.112200 OK 0 B URL GET HTTP/2 alexatracker.com/jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid=
IP 172.67.204.112:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subject*.alexatracker.com
FingerprintE0:17:31:90:3F:1A:8C:10:84:2E:87:0A:38:0D:1E:4E:AD:10:B9:4A
ValiditySat, 01 Apr 2023 16:58:57 GMT - Fri, 30 Jun 2023 16:58:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid= HTTP/1.1
Host: alexatracker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 12 Apr 2023 06:13:03 GMT
content-type: application/json; charset=UTF-8
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
set-cookie: trbarid=377360540e508500bb0252afa723d28d2d0f067dee0b124657b5fc82adb9ba6ca%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22trbarid%22%3Bi%3A1%3Bi%3A8378571333125426158%3B%7D; expires=Wed, 16-Apr-2025 06:13:02 GMT; Max-Age=63503999; path=/; secure; HttpOnly; SameSite=None
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v3EFOOEV0FFdg1C2jWoU5ebJ8wBnjbiCLWMIlWORhs83wHVi2Q02Erqr4K3yIf1QPLu5eqLA6UwiymodywmDsirQNtRu05MTcdEdke%2F%2F6fIwFAaP%2FU2CvCDeK6kIvhTE0afX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b695234fa01069b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash e57a1c00a22cd6723dc12d4a377c11bd
54b31465f0784d602a8f9cb3599f1c22b31b86ac
81589076478657820431fad9c0fe02c454f6a033e2e43cb3c3b4c1203d51c703
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137082
Date: Wed, 12 Apr 2023 06:13:03 GMT
Etag: "6435b12f-1d7"
Expires: Thu, 13 Apr 2023 20:17:45 GMT
Last-Modified: Tue, 11 Apr 2023 19:12:47 GMT
Server: ECAcc (nya/78BE)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sxUPsDziyEy5qPGOKDQa1bFPwtNXDRY9WC2I6JYMzt20kageA8qHPw==
Age: 3898
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash e57a1c00a22cd6723dc12d4a377c11bd
54b31465f0784d602a8f9cb3599f1c22b31b86ac
81589076478657820431fad9c0fe02c454f6a033e2e43cb3c3b4c1203d51c703
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 12 Apr 2023 06:13:03 GMT
Last-Modified: Wed, 12 Apr 2023 04:45:50 GMT
Server: ECAcc (nya/7970)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FFhaSGYZGyz-8TaLvH0kijBFbYc3lrVenA-hJrmeSB4epBzEsrZ36g==
Age: 5233
manager.production.almightypush.com/api/v1/code-snippet/
18.190.143.113200 OK 0 B URL OPTIONS HTTP/2 manager.production.almightypush.com/api/v1/code-snippet/
IP 18.190.143.113:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subjectproduction.almightypush.com
Fingerprint13:28:AF:3C:76:11:67:4F:12:43:F8:6D:83:B6:EA:81:FC:BC:AC:D1
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/code-snippet/ HTTP/1.1
Host: manager.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: channel-token
Referer: https://bestday2love.com/
Origin: https://bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 12 Apr 2023 06:13:03 GMT
content-type: text/html; charset=utf-8
content-length: 0
server: gunicorn/19.9.0
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://bestday2love.com
access-control-allow-headers: accept, accept-encoding, authorization, content-type, origin, x-csrftoken, x-requested-with, X-Push-Channel-Id, Channel-Token
access-control-allow-methods: DELETE, GET, OPTIONS, PATCH, POST, PUT
access-control-max-age: 86400
x-content-type-options: nosniff
referrer-policy: same-origin
X-Firefox-Spdy: h2
manager.production.almightypush.com/api/v1/code-snippet/
18.190.143.113200 OK 1.2 kB URL OPTIONS HTTP/2 manager.production.almightypush.com/api/v1/code-snippet/
IP 18.190.143.113:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subjectproduction.almightypush.com
Fingerprint13:28:AF:3C:76:11:67:4F:12:43:F8:6D:83:B6:EA:81:FC:BC:AC:D1
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (1184), with no line terminators
Hash 90c35fa65cf7fc6bb06e83dbb07c07c6
763bb2c0a7316ba1feeb256ffe9cdd71be365756
4e2726383519c60f5b6180bee1fbbfd6371174eade0681e4d6d1c4d6067ed023
GET /api/v1/code-snippet/ HTTP/1.1
Host: manager.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Channel-Token: ZDgwZGNmZGI1NmY1ZWI4NGZhZjJkMGJkNjEzOTNjYmQ9MTA2Njk9Lw==
Origin: https://bestday2love.com
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Apr 2023 06:13:03 GMT
content-type: application/json
content-length: 1184
server: gunicorn/19.9.0
vary: Accept, Origin
allow: GET, POST, HEAD, OPTIONS
x-frame-options: DENY
access-control-allow-credentials: true
access-control-allow-origin: https://bestday2love.com
x-content-type-options: nosniff
referrer-policy: same-origin
X-Firefox-Spdy: h2
bestday2love.com/favicon.ico
172.67.207.218404 Not Found 315 B URL GET HTTP/3 bestday2love.com/favicon.ico
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (326), with no line terminators
Hash 97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /favicon.ico HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 12 Apr 2023 06:13:03 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qT8J8ED0j2tqpl9m%2F1WU%2Fr5auYV%2FBRlB2SvLloRLgZgfHi%2B7NdFTmPyGHS71cv9zH1C0zDL0mdALmdjwuMMC%2F5g%2FTILFjGTVWLS%2BNTOejFx%2BCRR4iI9kLKVjcxwLrcjyneS%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b695236a84bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
zeniocloud.com/JAIA.js?sub1=bestday2love.com
0.0.0.0 0 B URL GET zeniocloud.com/JAIA.js?sub1=bestday2love.com
IP 0.0.0.0:0
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerLet's Encrypt
Subjectzeniocloud.com
FingerprintA7:BB:35:D8:B4:04:02:69:44:A1:3B:BC:BF:5B:2F:92:91:5F:44:3E
ValidityThu, 16 Mar 2023 18:01:34 GMT - Wed, 14 Jun 2023 18:01:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /JAIA.js?sub1=bestday2love.com HTTP/1.1
Host: zeniocloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/js/backoffer.js
172.67.207.218200 OK 430 B URL GET HTTP/3 bestday2love.com/10sec/1-970069/js/backoffer.js
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (430), with no line terminators
Hash 6d5aa83d23ce0b9f72d3b87d000d8fae
034fb8768eb58ffc0b5849e2c162989741a6cbec
89266112a6c823b9c03dd5a32d8f1c5e9f4cbf4cf876b56c825781ea389d0800
GET /10sec/1-970069/js/backoffer.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: application/javascript
last-modified: Fri, 21 Jan 2022 10:33:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 410065
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zbhbuGylhGK9uLxT%2B0Q193J%2FkJvQllQ4tw%2F9wwS%2FPT%2BTRB03IaK2QBikSXLqduRR28reWkiWfIcrnXqO7yqH8tABwZ2fWDrK%2F%2Bdw%2FgJgBVJ8rhjLJWmEe3tjZ0NUQAHeTKyA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952301f66b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www2.funnydaters.com/r/HCf54WQ2S-w
104.21.16.191302 Found 6.5 kB URL User Request GET HTTP/2 www2.funnydaters.com/r/HCf54WQ2S-w
IP 104.21.16.191:443
Certificate IssuerGoogle Trust Services LLC
Subject*.funnydaters.com
Fingerprint25:2B:31:7F:9F:67:98:C2:17:CB:75:5D:E5:EE:1F:ED:55:C3:B4:A5
ValiditySun, 12 Mar 2023 15:03:13 GMT - Sat, 10 Jun 2023 15:03:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Spam
GET /r/HCf54WQ2S-w HTTP/1.1
Host: www2.funnydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://funkydaters.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 12 Apr 2023 06:13:01 GMT
content-type: text/html; charset=UTF-8
location: https://click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0x5D4KzwU%2B4Vokal8vare8xo7fdltBmYgl0yZPOZJn1vy1KtZdAB6ohXy%2BnzVdFRPkeQHjjx4MjOBR%2B6zLOcZ4QLOPIijziGt5eQR6FkFWT6SBmLHFeG%2BRQ0si9J3%2FcAhyGgx4Kfjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b6952292ab8b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
172.67.207.218200 OK 6.5 kB URL User Request GET HTTP/2 bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
IP 172.67.207.218:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6979), with no line terminators
Hash 90e999a1595ca09a146c334b00dbab42
1e951d84ef96e80c3acff3953b7dea907e2e45d3
f39cc6664ed8ad118e087d984cb00aa02b8fbf23559405eaeeb838aea9d3e7ab
GET /10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL= HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://funkydaters.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 12 Apr 2023 06:13:01 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z91Yejk5T%2B2OxNWg%2FiWQ%2BLrpPNROR1AVu4A%2F4PMqEDXAEPbk4188AAK2Aq1TEf51nUWdTsLJ5w8aoT2jSHHmWc%2FrtcqOo5FIdUqQgO0fyqFMCMgIM3RdSDcPB5ZP%2FPiesjEs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b69522dcefbb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/js/jquery.js
172.67.207.218200 OK 88 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/js/jquery.js
IP 172.67.207.218:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (32042)
Hash 269aa59eab382fa3aaa418f21d22618f
5a8b67e7c78ea66096f3b404598d246c2aa8e617
5ced49ff396bdb0070d83727ff475375b53a843a8f446ee5041245ec81f6e98e
GET /10sec/1-970069/js/jquery.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=0SgB5eTEWS70qzVKl2w4Lo1kShWi0HZT6RPO2N_6tK0rNQ2ry-ofp67QQlsuUzyUe7ZwR3b1PWYb9KsxheKp6MY7X0d4x3MUddcJ3ZY_I2dM2mYQ72VMbC3aeSWNAmRiLC8d8hFb7h5hYpXP3_fmJ95sZ6zD_pHDj1RM4fkD3xKTo7sj-8Q8J1HKpfGG1sNR6JNr2gWW9UjEXw1VBPpQavlkD3j04Dt_kZ9FJRCCgykjKVWFWHDgfmOshao9ZuRDsLXghSJj86kj71Hp3Ti-koIqs0VUYFSjPbtYSXiIt7Qb8eNVdRcGPG9GeUS1mV78jMIB7vCnkovt0JQ9UIZZlUr1qq-nXnXUmtbbvVydnM9PVI68hFgKeagqAqxzC7O1OTsQmenB1mRRYY8ageLv6jV_xoBMjdMF2XXobUfL5eYoP6kS1qL83ewLRIfm5BTjaxadQ7KlCB8YP8oG4rHo5w&lptoken=166781ed287b17d38115&KEYWORD=HCf54WQ2S-w&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 12 Apr 2023 06:13:02 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 11:49:29 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 410065
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E4v6kMR2jpsZHMJidID2luyCObGVEL8YHqz9qTJ4l3kssGvOxI9pWyKqKrCvR9B%2BYSLkrtDM8FTJwPhXiR23QwebOOsEI1gsg7NESedlzywdHXF4JfnVpZ7smtrzB3ps12f3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b6952300f40b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400