r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20193
Expires: Thu, 27 Oct 2022 15:12:02 GMT
Date: Thu, 27 Oct 2022 09:35:29 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5527
Cache-Control: max-age=91660
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:29 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:03:09 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5527
Cache-Control: max-age=91660
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:29 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:03:09 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7520
Expires: Thu, 27 Oct 2022 11:40:49 GMT
Date: Thu, 27 Oct 2022 09:35:29 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oRNdNdLTM4f4JPDrPVAQKd7i/CZ2umF7qXAk65TxxQ6eSL1o1w9S537EVi1AAEmdtOmb/NXXUDE=
x-amz-request-id: ZPTC8GV9V0FJPN5J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 09:09:46 GMT
age: 1543
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 09:35:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ijsid.crypit.net/
200 OK 2.2 kB IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (608)
Hash e0a1996d3f57e0838ee202cddc31cc0f
b02676f999ded8454677d163ffb229b1df7e7ea6
63988a8b7587d2acb7c3f824e92aec969d7c61c6f5ba4e08044f289d019a4b13
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ijsid.crypit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 09:35:29 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash d72d2f5d05f03753594e43fd34398221
ac6795c1c33f3fa2139e7f8dc601c3e6de6029a5
036c965156cf07faecc342cb2e30b7a20def68ad4a10423951ce871a7a3a6777
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3136
Cache-Control: max-age=170615
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:30 GMT
Etag: "635a3c19-1d7"
Expires: Sat, 29 Oct 2022 08:59:05 GMT
Last-Modified: Thu, 27 Oct 2022 08:06:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ijsid.crypit.net/page/bouncy.php?&bpae=GbhetKvmdU1%2F9rvvOxI7sWNAvnt%2Fh0pRTzQvnjcBQ%2BW3EVPEumzBIiB4VkqtDaidJKpgyR56xkdOVHk7tKicX0ySet3WY%2F5Sr7T0JrRpdqf2beH7NC8Kali7xfx19QlXzLkSwSCipxqL6Lvx1weQDpImQd4QoGVlN82W5FV2oHEi5DfFnWY8V%2BR31OZpAFvO4gkBcQUbIX%2FGYyjB6XP5CVeuhjYTlkbOz15RuS05OuwEPFQpyezGISOIcn5YjhEH2pQpS1zKmsf0Hdxk5me0l4g9RNmKi3CwEeyccGzZa6JjztrYydKy%2BuSCICJJJs5PqLhkiDTnX03xCpy1k%2FBi3qdEtLFqowki5F19fNJ2yifxhHT1T3Oe1zpLnhGaxR6dolh05tqpuBmW83rMggtuBVLUNMPQ51xgpTviArTE%2Fdn8pN6XFZui0mYFMmaiFh37n%2FjUhk2n8%2FZ2GgqqfQxTHYTX0x2zZfXVa4oy3H6J2w%3D%3D&redirectType=js&inIframe=false&inPopUp=false
200 OK 985 B URL HTTP/1.1 ijsid.crypit.net/page/bouncy.php?&bpae=GbhetKvmdU1%2F9rvvOxI7sWNAvnt%2Fh0pRTzQvnjcBQ%2BW3EVPEumzBIiB4VkqtDaidJKpgyR56xkdOVHk7tKicX0ySet3WY%2F5Sr7T0JrRpdqf2beH7NC8Kali7xfx19QlXzLkSwSCipxqL6Lvx1weQDpImQd4QoGVlN82W5FV2oHEi5DfFnWY8V%2BR31OZpAFvO4gkBcQUbIX%2FGYyjB6XP5CVeuhjYTlkbOz15RuS05OuwEPFQpyezGISOIcn5YjhEH2pQpS1zKmsf0Hdxk5me0l4g9RNmKi3CwEeyccGzZa6JjztrYydKy%2BuSCICJJJs5PqLhkiDTnX03xCpy1k%2FBi3qdEtLFqowki5F19fNJ2yifxhHT1T3Oe1zpLnhGaxR6dolh05tqpuBmW83rMggtuBVLUNMPQ51xgpTviArTE%2Fdn8pN6XFZui0mYFMmaiFh37n%2FjUhk2n8%2FZ2GgqqfQxTHYTX0x2zZfXVa4oy3H6J2w%3D%3D&redirectType=js&inIframe=false&inPopUp=false
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6c43d2d4d144576003939ed025e6acb1
9d56ff875b8c30d32d899f41320d9fc5270a6d76
0902ff591c0b57604d51853ebfaedf41dc80548dec1d0f05c72cc2d3462a4e1b
GET /page/bouncy.php?&bpae=GbhetKvmdU1%2F9rvvOxI7sWNAvnt%2Fh0pRTzQvnjcBQ%2BW3EVPEumzBIiB4VkqtDaidJKpgyR56xkdOVHk7tKicX0ySet3WY%2F5Sr7T0JrRpdqf2beH7NC8Kali7xfx19QlXzLkSwSCipxqL6Lvx1weQDpImQd4QoGVlN82W5FV2oHEi5DfFnWY8V%2BR31OZpAFvO4gkBcQUbIX%2FGYyjB6XP5CVeuhjYTlkbOz15RuS05OuwEPFQpyezGISOIcn5YjhEH2pQpS1zKmsf0Hdxk5me0l4g9RNmKi3CwEeyccGzZa6JjztrYydKy%2BuSCICJJJs5PqLhkiDTnX03xCpy1k%2FBi3qdEtLFqowki5F19fNJ2yifxhHT1T3Oe1zpLnhGaxR6dolh05tqpuBmW83rMggtuBVLUNMPQ51xgpTviArTE%2Fdn8pN6XFZui0mYFMmaiFh37n%2FjUhk2n8%2FZ2GgqqfQxTHYTX0x2zZfXVa4oy3H6J2w%3D%3D&redirectType=js&inIframe=false&inPopUp=false HTTP/1.1
Host: ijsid.crypit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ijsid.crypit.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 09:35:30 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CGghBRsEUwQWH6UwpVUKyQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9y7HvIf38odC2iyqPic2wIBsUQ8=
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash abc382d8345ef69e005ad07427c4dd66
7db165b566b6722d5cdc1e79a559e9d5f0d5fa33
c01872f1c149a32b01b6e4567784d48d4399255594154e66596952229f48fd81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138414
Date: Thu, 27 Oct 2022 09:35:30 GMT
Etag: "6359b940-1d7"
Expires: Sat, 29 Oct 2022 00:02:24 GMT
Last-Modified: Wed, 26 Oct 2022 22:48:32 GMT
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vFeirUAu_zUYbTcPISPVnZ7WEkbCwJstiMWS4xIAzxY0V3i9cATNkQ==
Age: 4432
brynh-lei.com/favicon.ico
404 Not Found 653 B URL HTTP/2 brynh-lei.com/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: brynh-lei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brynh-lei.com/zcredirect?visitid=b1e882f5-55da-11ed-8d17-0a3c6c747e03&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Thu, 27 Oct 2022 09:35:31 GMT
content-type: text/html;charset=utf-8
content-length: 653
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
content-language: en
server: vgTDNGjn
X-Firefox-Spdy: h2
xml-v4.netload1.com/click?seat=2325260&i=gol03k8ibcU_0
302 Found 0 B URL HTTP/1.1 xml-v4.netload1.com/click?seat=2325260&i=gol03k8ibcU_0
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?seat=2325260&i=gol03k8ibcU_0 HTTP/1.1
Host: xml-v4.netload1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://sal.inbluson.com/go/fd6b3f3b-2600-454a-981c-c4e1b8cd015d?bid=0.031&conversion=YZbuzKCZUzY&source_subid=12254057893&campaign=876413&search_referrer_domain=crypit.net&query=crypit.net&carrier=Blix+Solutions&state=03&banner=5457956&ip=91.90.42.154
Pragma: no-cache
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 02516c6226ca8aebd46b6100ab88e321
cde9c0b8716006675e03b12384d621c103ac55b4
07654107a299e4d62d621583dd0fd48867f966a93a8f2c3a3b86a4c0154e600d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "07654107A299E4D62D621583DD0FD48867F966A93A8F2C3A3B86A4C0154E600D"
Last-Modified: Thu, 27 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15923
Expires: Thu, 27 Oct 2022 14:00:54 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
sal.inbluson.com/go/fd6b3f3b-2600-454a-981c-c4e1b8cd015d?bid=0.031&conversion=YZbuzKCZUzY&source_subid=12254057893&campaign=876413&search_referrer_domain=crypit.net&query=crypit.net&carrier=Blix+Solutions&state=03&banner=5457956&ip=91.90.42.154
302 Found 932 B URL HTTP/2 sal.inbluson.com/go/fd6b3f3b-2600-454a-981c-c4e1b8cd015d?bid=0.031&conversion=YZbuzKCZUzY&source_subid=12254057893&campaign=876413&search_referrer_domain=crypit.net&query=crypit.net&carrier=Blix+Solutions&state=03&banner=5457956&ip=91.90.42.154
IP
File type HTML document, ASCII text, with very long lines (932), with no line terminators
Hash 47be1cb7119e817fa854755097cfffc3
28059bdae4a3c31cdf29d363a92bffb8a9394048
d5d3fcb6b878e83c2cf2f7d492c3d37500d57ba5fb9cfa0d79226c1679ca8f2d
GET /go/fd6b3f3b-2600-454a-981c-c4e1b8cd015d?bid=0.031&conversion=YZbuzKCZUzY&source_subid=12254057893&campaign=876413&search_referrer_domain=crypit.net&query=crypit.net&carrier=Blix+Solutions&state=03&banner=5457956&ip=91.90.42.154 HTTP/1.1
Host: sal.inbluson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 27 Oct 2022 09:35:31 GMT
content-type: text/html; charset=utf-8
content-length: 932
access-control-allow-origin: *
location: https://dailylovematch.com/?lpkey=eyJ0aW1lc3RhbXAiOiIxNjY2ODYzMzMxIiwiaGFzaCI6IjA3MGMyNTg0ZGY0NTBhNGJmNDM4NTlkNThlYjk4ZTlhMjZjNGUzMjAifQ%3D%3D&bemobdata=c%3Dfd6b3f3b-2600-454a-981c-c4e1b8cd015d..l%3Deccac7a2-b3bb-4ce0-880a-df3b690863e8..a%3D0..b%3D0..z%3D0.031..e%3DYZbuzKCZUzY..c1%3D12254057893..c2%3D876413..c3%3Dcrypit.net..c5%3Dcrypit.net..c6%3DBlix%2520Solutions..c7%3D03..c8%3D5457956..c9%3D91.90.42.154&cid=P6mmCfBgk2PEnFp5PBm7mV
set-cookie: bemob-uniq-visit:fd6b3f3b-2600-454a-981c-c4e1b8cd015d=1; Domain=sal.inbluson.com; Path=/; Expires=Fri, 28 Oct 2022 09:35:31 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:fd6b3f3b-2600-454a-981c-c4e1b8cd015d:random:5eb3d278575e2f3323345d9220c67e57=0-0-0; Domain=sal.inbluson.com; Path=/; Expires=Fri, 28 Oct 2022 09:35:31 GMT; HttpOnly; Secure; SameSite=None
bemob-track-url=https%3A%2F%2Fdailylovematch.com%2F%3Flpkey%3DeyJ0aW1lc3RhbXAiOiIxNjY2ODYzMzMxIiwiaGFzaCI6IjA3MGMyNTg0ZGY0NTBhNGJmNDM4NTlkNThlYjk4ZTlhMjZjNGUzMjAifQ%253D%253D%26bemobdata%3Dc%253Dfd6b3f3b-2600-454a-981c-c4e1b8cd015d..l%253Deccac7a2-b3bb-4ce0-880a-df3b690863e8..a%253D0..b%253D0..z%253D0.031..e%253DYZbuzKCZUzY..c1%253D12254057893..c2%253D876413..c3%253Dcrypit.net..c5%253Dcrypit.net..c6%253DBlix%252520Solutions..c7%253D03..c8%253D5457956..c9%253D91.90.42.154%26cid%3DP6mmCfBgk2PEnFp5PBm7mV; Domain=sal.inbluson.com; Path=/; Expires=Fri, 28 Oct 2022 09:35:31 GMT; HttpOnly; Secure; SameSite=None
vary: Accept
x-response-time: 13.479ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash b893fc898e7171198f2f657557d0904f
b15920305241dc13d2c38587ce7f1f7837547170
8400c8940e9fa7ae3775d0e28cdd8d3bf5529f52a0c6664114c9197d37dda73d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5220
Cache-Control: max-age=169490
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Etag: "635a2f91-117"
Expires: Sat, 29 Oct 2022 08:40:21 GMT
Last-Modified: Thu, 27 Oct 2022 07:13:21 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 262ee317a7d41424cef3f541f6e538d3
1c298c901f93a95e99bdc63259f415ab84a13783
c263ddf8d0a398b0b7e11f7efa9cb901bf877d939f388eb6089a236bbbdc2be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C263DDF8D0A398B0B7E11F7EFA9CB901BF877D939F388EB6089A236BBBDC2BE4"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Thu, 27 Oct 2022 10:13:16 GMT
Date: Thu, 27 Oct 2022 09:35:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 00:44:24 GMT
age: 31867
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2193431d88baf9af6829421cd13743ff
a192ab139ad0dc5cf206986eb06028ddad224e46
c535e09fb4a53ca580f5f5926d1494c50b6ad6c7c9ec78df6b7015213852b737
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9720
x-amzn-requestid: 6b4749ca-bcb9-4274-a309-e6d463851a6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_n6FOSIAMFroA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524632-56186f1f2a0bf68f6dba843b;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:11:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DjRLNrY4BFc3GwHGBW40LIyh-RYT3hshdKPxXok4KE97fGvatXN6yQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 11:12:06 GMT
age: 80605
etag: "a192ab139ad0dc5cf206986eb06028ddad224e46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ded5eb41644bfe7ea87cff5ab0d79f0
9b13eca2d768277b92c05a8a82743018489783a6
3de7fcc3e9c8a107e4c5d6e59506ec71e68129a8351e47af63930873775ac3f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F577b3c1d-3b6e-4105-8d19-8557bacffa02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15768
x-amzn-requestid: ab678277-5d12-4ae2-9af7-f15fab294657
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRoclEbBoAMFz9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63508783-344a14d17bfcd6b12ffe02b0;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 23:25:55 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AgS3Yq-WCRRnFvCxMcwq13lQz8cGvvdwZ51C3H0szmB0iyZLb9mf-A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:58:12 GMT
age: 41839
etag: "9b13eca2d768277b92c05a8a82743018489783a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3185609c8bfba0bf8d54812276331c42
4a14cc85d23798bd3476516b49a3c3ff7bcd0d98
e57871dad12531fccf75d0bc4930c18c3c95c706b2bfd89e620b1e097b40a08e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1cba4a5a-0803-4870-b5e5-cbf33536e53e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6493
x-amzn-requestid: f5ca8ddd-d103-43e2-b3b7-ece16e1312a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ainrUE-pIAMF9rA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63575315-5f7287ea785008c44b0ff490;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:08:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LOj8fvtUhiwgFnrZG9v0iJ1At2O4vsdXM6tCPF8Blr-AOA-ALbuIkQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 03:39:20 GMT
age: 21371
etag: "4a14cc85d23798bd3476516b49a3c3ff7bcd0d98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c92c49279a7704d715e50836676d1abb
3092b4dbd87f7e5a2eff65c463da9c5103ff748a
6941145d63e68abf0f20081517faa4082eed3c59f8b8a69066f70b29d90fd355
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4709
x-amzn-requestid: c2923a57-57c4-4d62-83bc-e4c8b61aa2bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGeeIAMF9Dg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7e47cfe804e333cc540f162a;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: M72Vjcyc06ihmWcqr2_Xrk8dGcC5pCoDidg5rhtRkVddavcUFE6G6w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:37 GMT
etag: "3092b4dbd87f7e5a2eff65c463da9c5103ff748a"
content-type: image/jpeg
age: 42474
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb13a70d-b8c4-4350-b75f-4a792bbe0138.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb13a70d-b8c4-4350-b75f-4a792bbe0138.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b3875b4f9986a58288fdb19744f275e
ee76902c43d2b348a194456e53978337cf5391a4
84e01baf1a4f51606a20f464990c1de066a10a0310abc3abffa5b143ad64c93f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb13a70d-b8c4-4350-b75f-4a792bbe0138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5444
x-amzn-requestid: 6d58934a-f718-4bdc-9aa9-e570c3eb6d0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aI0DvG5voAMFmLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634d007e-2e60c6b673315a4034f09320;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 07:13:02 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: skpAlvhidM2bxW0pciEBF7LfKpWGnwLsq_Eg0y4VCOp5GdtJlgYhAQ==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:52:15 GMT
age: 42196
etag: "ee76902c43d2b348a194456e53978337cf5391a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash b893fc898e7171198f2f657557d0904f
b15920305241dc13d2c38587ce7f1f7837547170
8400c8940e9fa7ae3775d0e28cdd8d3bf5529f52a0c6664114c9197d37dda73d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5220
Cache-Control: max-age=169490
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Etag: "635a2f91-117"
Expires: Sat, 29 Oct 2022 08:40:21 GMT
Last-Modified: Thu, 27 Oct 2022 07:13:21 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
d30itml3t0pwpf.cloudfront.net/assets/pages_v2_default-8a3a4eb4903ade9e9f58c2afec56937ec52023f6636d9381f0f362d7df1d4636.css
200 OK 9.1 kB URL HTTP/1.1 d30itml3t0pwpf.cloudfront.net/assets/pages_v2_default-8a3a4eb4903ade9e9f58c2afec56937ec52023f6636d9381f0f362d7df1d4636.css
IP
File type ASCII text, with very long lines (54860)
Hash f2b489f20914aee991153354e3eda907
95c99e52757e9bcb218d09df48a4f1349f196f76
d87e57b2e49e266b8a69396c816d51f649e968c134dd0de92ffd94f2ec1c108b
GET /assets/pages_v2_default-8a3a4eb4903ade9e9f58c2afec56937ec52023f6636d9381f0f362d7df1d4636.css HTTP/1.1
Host: d30itml3t0pwpf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 9053
Connection: keep-alive
Date: Thu, 08 Sep 2022 01:28:48 GMT
Server: nginx/1.17.5
Last-Modified: Tue, 06 Sep 2022 17:35:14 GMT
ETag: "631784d2-235d"
Content-Encoding: gzip
Cache-Control: public, max-age=315360000
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P1Y1eejH-PmfNw-TuMzB31Yo-2Db098Ssdn9_UIw42YWg2aXYFwa4g==
Age: 4262803
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700
200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700
IP
Hash 9f9220a7021a532ad68b24f0638cb0db
59861d593bcc800b1366e9a174f3aec28200d69c
eca3aaedc230229c195906bc2f4f968fe7aaed9946c3f4b7a7997f893c35c8fe
GET /css?family=Roboto%3A300%2C400%2C500%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 09:35:31 GMT
date: Thu, 27 Oct 2022 09:35:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dailylovematch.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 50483
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d14190b7d44355f74384008fc2bc965b
8899240507992ceba98f567c079650149cc583a4
2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 09:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 197da3a7939f4e90cc1028d6ce21b0eb
7fd4c810784da9b35cdb00ea9025c15f7765ee15
e8714866da0571f7f5981e128890f694b36d03674e730144bc22e0bd4913cea2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=168566
Date: Thu, 27 Oct 2022 09:35:31 GMT
Etag: "635a4059-1d7"
Expires: Sat, 29 Oct 2022 08:24:57 GMT
Last-Modified: Thu, 27 Oct 2022 08:24:57 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XkSZksD4K8yU9l7MTCR_QsTPxHYSwWIr42tb0lXBxwBOCGOY9NNQHg==
d30itml3t0pwpf.cloudfront.net/api/v3/medias/15675997/image/opt/1600x2000%3E/1634688277-54ca7856
200 OK 595 kB URL HTTP/1.1 d30itml3t0pwpf.cloudfront.net/api/v3/medias/15675997/image/opt/1600x2000%3E/1634688277-54ca7856
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1600x2000, components 3\012- data
Size 595 kB (595023 bytes)
Hash 762916abfc85456b53f2f7ad32e97f4a
a17dfb754fef1291ead54ba44ae71f82604a8807
638da1c58b24b2ec22dbb85459a42082642f257174eafbb4db39cfa3e520ec20
GET /api/v3/medias/15675997/image/opt/1600x2000%3E/1634688277-54ca7856 HTTP/1.1
Host: d30itml3t0pwpf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 21 Oct 2022 10:36:45 GMT
Server: nginx/1.17.5
ETag: "9c96d1182f6322ddec528020f7c1f881"
Last-Modified: Wed, 20 Oct 2021 00:04:37 GMT
Expires: Sun, 20 Nov 2022 10:36:44 GMT
Content-Disposition: inline; filename="garin-chadwick-xnf_s_upjso-unsplash.jpg"
Content-Transfer-Encoding: binary
Cache-Control: max-age=2592000, public
Content-Language: en
X-Request-Id: 5ac0560b-735a-41ec-9761-18d1eee7b3d0
X-Runtime: 0.604466
Strict-Transport-Security: max-age=300
X-Download-Options: noopen
Content-Security-Policy: default-src 'none'
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PX6EWBh_tOjnkj7KnP8OfBNr7I8z3lPxVjXQrijSmNK08mgARZpWxw==
Age: 514726
d30itml3t0pwpf.cloudfront.net/api/v3/medias/15478785/image/opt/original/1624564977-49843495
200 OK 8.2 kB URL HTTP/1.1 d30itml3t0pwpf.cloudfront.net/api/v3/medias/15478785/image/opt/original/1624564977-49843495
IP
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 54c815844781027a43bba9a48a76047b
3c78491b75db5b99fecdcea443bca4fa63b0c435
0d823f125a8f8eab3feee3980cc404b5ac189eedf0428a51ca4f875d7620cdcf
GET /api/v3/medias/15478785/image/opt/original/1624564977-49843495 HTTP/1.1
Host: d30itml3t0pwpf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 24 Oct 2022 08:10:50 GMT
Server: nginx/1.17.5
ETag: "472fba11507c5f6ad9a0a61cca288242"
Last-Modified: Thu, 24 Jun 2021 20:02:57 GMT
Expires: Wed, 23 Nov 2022 08:10:50 GMT
Content-Disposition: inline; filename="97fb392385f1465eaefbc3a096d8c3c0.png"
Content-Transfer-Encoding: binary
Cache-Control: max-age=2592000, public
Content-Language: en
X-Request-Id: b9764522-d8f2-470f-8c1a-076c2913f2f8
X-Runtime: 0.082979
Strict-Transport-Security: max-age=300
X-Download-Options: noopen
Content-Security-Policy: default-src 'none'
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SW42xiBozOLh06VMdQZ3gfjG7I0asf-OYAJS6wqD-FVq4WOlMfWktw==
Age: 264281
d30itml3t0pwpf.cloudfront.net/assets/pages_v2r-fecc1e6a2156b7e0c3f1599c2799e4e904967c8592cbb3e5dc6ad773fdb4737e.js
404 Not Found 169 B URL HTTP/1.1 d30itml3t0pwpf.cloudfront.net/assets/pages_v2r-fecc1e6a2156b7e0c3f1599c2799e4e904967c8592cbb3e5dc6ad773fdb4737e.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 75498ccdf6d1ca96d29735566023829a
2951272e362fdf3d79488531406a383f96cf6332
dd2943d2f8c69925d2c6248e82f232d5c75efca81b0b16d580773e2d890133b6
GET /assets/pages_v2r-fecc1e6a2156b7e0c3f1599c2799e4e904967c8592cbb3e5dc6ad773fdb4737e.js HTTP/1.1
Host: d30itml3t0pwpf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Date: Thu, 27 Oct 2022 09:35:32 GMT
Server: nginx/1.17.5
X-Cache: Error from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: p1IilWm6caywZxkb4VVNgzxSJgvcLpCs1e3IMM80LPu0yhh4LxDeDg==
brynh-lei.com/zcredirect?visitid=b1e882f5-55da-11ed-8d17-0a3c6c747e03&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
200 OK 775 B URL HTTP/2 brynh-lei.com/zcredirect?visitid=b1e882f5-55da-11ed-8d17-0a3c6c747e03&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false
IP
Hash feb5ed9a65af07e047dfa025438f8c97
ecdf15631a0f2438338943d9655708cf5dfb049d
46b39303d876e68d1b35c933ca04856ca1adeb97baf83c42850d87f0bf05f9f4
GET /zcredirect?visitid=b1e882f5-55da-11ed-8d17-0a3c6c747e03&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false HTTP/1.1
Host: brynh-lei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://brynh-lei.com/zcvisitor/b1e882f5-55da-11ed-8d17-0a3c6c747e03/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=b1f6dad4-55da-11ed-8d17-0a3c6c747e03
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 27 Oct 2022 09:35:30 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
server: OJCvplGe
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 136d2b8a41385d32b07191c7006c6ae4
8f98ee8cb1c546433595ec5b2770f97b71003c15
4d886e999091ee6a5e22e64acceb99cf4b1b0ad31dfade79174d4bec9cd1c51e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=149946
Date: Thu, 27 Oct 2022 09:35:32 GMT
Etag: "6359e205-1d7"
Expires: Sat, 29 Oct 2022 03:14:38 GMT
Last-Modified: Thu, 27 Oct 2022 01:42:29 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Tqdb3d6aU2goExEgMGCCifZ9fgxVKqoKqXQsCKaQXlE-MXAcgxfz4g==
Age: 5529
ocsp.sca1b.amazontrust.com/
200 OK 583 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b6c138d5d8f3f4c088496e7d91d1be26
e4d84b9cbd65393128cefb27e251a9a097015415
f74326d4eb89f257a50c0ec44bb665087cc739d85e51348b0757c3b3a9034c38
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150764
Date: Thu, 27 Oct 2022 09:35:32 GMT
Etag: "6359e205-1d7"
Expires: Sat, 29 Oct 2022 03:28:16 GMT
Last-Modified: Thu, 27 Oct 2022 01:42:29 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hOjdL701_ZRbODXr-MgEyH-npMkAqZn0kW41ghzUOpAQoA3cpEqAhg==
Age: 6347
cdn.wishpond.net/connect.js?merchantId=1496568&socialCampaignId=2656890&writeKey=86e5ec46cc33
200 OK 42 kB URL HTTP/2 cdn.wishpond.net/connect.js?merchantId=1496568&socialCampaignId=2656890&writeKey=86e5ec46cc33
IP
File type ASCII text, with very long lines (32766)
Hash 6ead4e15bb01b236d8fef9329acdb55f
4a68eebf6fb96f4bf69ebb7e0e1f16775bcc21b4
4608d2cea9de2e2ad95e5ff43687e040a4729238fda39b0a3e03b86971dc51f7
GET /connect.js?merchantId=1496568&socialCampaignId=2656890&writeKey=86e5ec46cc33 HTTP/1.1
Host: cdn.wishpond.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dailylovematch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 24 Oct 2022 16:50:06 GMT
server: nginx/1.17.5
last-modified: Thu, 20 Oct 2022 19:10:21 GMT
etag: W/"63519d1d-2749e"
cache-control: public, stale-if-error, max-age=3600, s-max-age=172800
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 63FO4Tc9Zolm2FwPLv4Jn7pkbcImMRAs2BgM6zQOEdskF4B3WR-kMg==
age: 233125
X-Firefox-Spdy: h2
artisan.wishpond.com/socket/websocket?mid=1496568&write_key=86e5ec46cc33&cid=uyrb9tciso62o5e2&social_campaign_id=2656890&vsn=2.0.0
101 Switching Protocols 0 B URL HTTP/1.1 artisan.wishpond.com/socket/websocket?mid=1496568&write_key=86e5ec46cc33&cid=uyrb9tciso62o5e2&social_campaign_id=2656890&vsn=2.0.0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket/websocket?mid=1496568&write_key=86e5ec46cc33&cid=uyrb9tciso62o5e2&social_campaign_id=2656890&vsn=2.0.0 HTTP/1.1
Host: artisan.wishpond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://dailylovematch.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: is2mHMnbrbGnKhMvn3wK/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 27 Oct 2022 09:35:33 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: cXmDMkVtdD+nay0+1RX12OIb594=
server: Cowboy
upgrade: websocket
dailylovematch.com/?lpkey=eyJ0aW1lc3RhbXAiOiIxNjY2ODYzMzMxIiwiaGFzaCI6IjA3MGMyNTg0ZGY0NTBhNGJmNDM4NTlkNThlYjk4ZTlhMjZjNGUzMjAifQ%3D%3D&bemobdata=c%3Dfd6b3f3b-2600-454a-981c-c4e1b8cd015d..l%3Deccac7a2-b3bb-4ce0-880a-df3b690863e8..a%3D0..b%3D0..z%3D0.031..e%3DYZbuzKCZUzY..c1%3D12254057893..c2%3D876413..c3%3Dcrypit.net..c5%3Dcrypit.net..c6%3DBlix%2520Solutions..c7%3D03..c8%3D5457956..c9%3D91.90.42.154&cid=P6mmCfBgk2PEnFp5PBm7mV
200 OK 0 B URL HTTP/2 dailylovematch.com/?lpkey=eyJ0aW1lc3RhbXAiOiIxNjY2ODYzMzMxIiwiaGFzaCI6IjA3MGMyNTg0ZGY0NTBhNGJmNDM4NTlkNThlYjk4ZTlhMjZjNGUzMjAifQ%3D%3D&bemobdata=c%3Dfd6b3f3b-2600-454a-981c-c4e1b8cd015d..l%3Deccac7a2-b3bb-4ce0-880a-df3b690863e8..a%3D0..b%3D0..z%3D0.031..e%3DYZbuzKCZUzY..c1%3D12254057893..c2%3D876413..c3%3Dcrypit.net..c5%3Dcrypit.net..c6%3DBlix%2520Solutions..c7%3D03..c8%3D5457956..c9%3D91.90.42.154&cid=P6mmCfBgk2PEnFp5PBm7mV
IP
GET /?lpkey=eyJ0aW1lc3RhbXAiOiIxNjY2ODYzMzMxIiwiaGFzaCI6IjA3MGMyNTg0ZGY0NTBhNGJmNDM4NTlkNThlYjk4ZTlhMjZjNGUzMjAifQ%3D%3D&bemobdata=c%3Dfd6b3f3b-2600-454a-981c-c4e1b8cd015d..l%3Deccac7a2-b3bb-4ce0-880a-df3b690863e8..a%3D0..b%3D0..z%3D0.031..e%3DYZbuzKCZUzY..c1%3D12254057893..c2%3D876413..c3%3Dcrypit.net..c5%3Dcrypit.net..c6%3DBlix%2520Solutions..c7%3D03..c8%3D5457956..c9%3D91.90.42.154&cid=P6mmCfBgk2PEnFp5PBm7mV HTTP/1.1
Host: dailylovematch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 09:35:31 GMT
content-type: text/html; charset=UTF-8
cache-control: no-store
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ev4gLbmR43mqmOkVRCm%2F0u3BjpPwnZ%2F0sdMhgHAOpSa1Z6DiOwALIG5suqjGFu%2BNxwRPutRijKW7fua1KTJxuIGJ6SbItqsJkEgJBF35jZTqeVeszv%2BbofGigRl3xpzTy75dBYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 760a712c8f56b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
brynh-lei.com/zcvisitor/b1e882f5-55da-11ed-8d17-0a3c6c747e03/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=b1f6dad4-55da-11ed-8d17-0a3c6c747e03
200 OK 0 B URL HTTP/2 brynh-lei.com/zcvisitor/b1e882f5-55da-11ed-8d17-0a3c6c747e03/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=b1f6dad4-55da-11ed-8d17-0a3c6c747e03
IP
GET /zcvisitor/b1e882f5-55da-11ed-8d17-0a3c6c747e03/c48f16c0-a519-11ec-9226-0a76dcc61f13?campaignid=b1f6dad4-55da-11ed-8d17-0a3c6c747e03 HTTP/1.1
Host: brynh-lei.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ijsid.crypit.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 09:35:30 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-webkit-csp: default-src 'self'; script-src 'self' 'unsafe-inline'
access-control-allow-origin: *
access-control-allow-methods: GET,POST,OPTIONS
access-control-allow-headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
server: HwFvAJOh
X-Firefox-Spdy: h2
67.227.226.240
93.184.220.29
3.70.16.242
23.36.77.32
0.0.0.0