r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 408d1564e8f59e6626e41be4106ce2e6
4149a1f17e8f7c446e7aa4963f3a49b6a00b6164
46e2e79c7977854058dec9cde88f963dd498dd235c3bb15b39a9e5ce1027d7fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E2E79C7977854058DEC9CDE88F963DD498DD235C3BB15B39A9E5CE1027D7FE"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5537
Expires: Sat, 11 Feb 2023 09:09:16 GMT
Date: Sat, 11 Feb 2023 07:36:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 84247d80b610d0c6da587141b21323ae
46461f8709d099f5295998f41aaafa5be4387ea6
bee5e9e0d7b4a24609950ceb40194bffb482c36152d376bb119e7cc3aba488dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEE5E9E0D7B4A24609950CEB40194BFFB482C36152D376BB119E7CC3ABA488DC"
Last-Modified: Thu, 09 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7440
Expires: Sat, 11 Feb 2023 09:40:59 GMT
Date: Sat, 11 Feb 2023 07:36:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 50a2f8cdbbd1059f5318753155bba7ef
405e63ea4683be44f876feae34b5cb645ff751f2
f6ac743a5a17d64d2858fec5791050d2dc8074ddd823826c93e67bffdb2f0868
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6AC743A5A17D64D2858FEC5791050D2DC8074DDD823826C93E67BFFDB2F0868"
Last-Modified: Thu, 09 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20603
Expires: Sat, 11 Feb 2023 13:20:22 GMT
Date: Sat, 11 Feb 2023 07:36:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 11 Feb 2023 06:37:00 GMT
content-type: application/json
age: 3599
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5XN/pkgW2o/U78JdOy1gbpvklT6o5ppYNK2XoFDG2e7eqfEP0WBUTvJLyw9tLjrVwqkl5Q2TrX4=
x-amz-request-id: BEYBHVT48JG02PV5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 11 Feb 2023 06:37:07 GMT
age: 3592
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e0bvvbctest3.vinsutab.tk/TSKtBH6B?keyword=jason.gant@slurpmail.net&sub1=clear&sub3=academia.kz
146.190.75.35302 Found 0 B URL HTTP/1.1 e0bvvbctest3.vinsutab.tk/TSKtBH6B?keyword=jason.gant@slurpmail.net&sub1=clear&sub3=academia.kz
IP 146.190.75.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET POLICY HTTP Request to a *.tk domain
GET /TSKtBH6B?keyword=jason.gant@slurpmail.net&sub1=clear&sub3=academia.kz HTTP/1.1
Host: e0bvvbctest3.vinsutab.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Sat, 11 Feb 2023 07:37:00 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://dateexotic.com/agEA?usid=s8hnpa1e1cqq&email=jason.gant%40slurpmail.net&sub1=clear_main&prid=s8hnpa1e1cqq
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1e1cqq;Expires=Tuesday, 14-Mar-2023 07:36:59 GMT;Max-Age=2678400;Path=/
b15e4=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjk4XCI6MTY3NjEwMTAxOX0sXCJjYW1wYWlnbnNcIjp7XCIzM1wiOjE2NzYxMDEwMTl9LFwidGltZVwiOjE2NzYxMDEwMTl9In0.2BNqNt5YffzL1OBYiV-CJOEEgxECl-7sWd1xIQpIm98;Expires=Tuesday, 24-Mar-2076 15:13:58 GMT;Max-Age=1676187419;Path=/
_token=uuid_s8hnpa1e1cqq_s8hnpa1e1cqq63e7459bf0ae39.92726029;Expires=Tuesday, 14-Mar-2023 07:36:59 GMT;Max-Age=2678400;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 11 Feb 2023 07:37:00 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be1440ea65cfd97452984e4713f6ff25
67746ac8b66e4d8443f88fac47ee4b91a6a2f316
71dcaa842bd6b235599bfba4d8fcbf06f68a13bf84121a6e9b914d8546b128e0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "71DCAA842BD6B235599BFBA4D8FCBF06F68A13BF84121A6E9B914D8546B128E0"
Last-Modified: Thu, 09 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 11 Feb 2023 13:37:00 GMT
Date: Sat, 11 Feb 2023 07:37:00 GMT
Connection: keep-alive
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be1440ea65cfd97452984e4713f6ff25
67746ac8b66e4d8443f88fac47ee4b91a6a2f316
71dcaa842bd6b235599bfba4d8fcbf06f68a13bf84121a6e9b914d8546b128e0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "71DCAA842BD6B235599BFBA4D8FCBF06F68A13BF84121A6E9B914D8546B128E0"
Last-Modified: Thu, 09 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 11 Feb 2023 13:37:00 GMT
Date: Sat, 11 Feb 2023 07:37:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 3.9 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
Hash ef9e7f2c86744414a454f25f359cbe6e
ea89ffb48accfba89a006f6c1a7b865d7de0c98a
3ae0c4d4e0e3968f4916e8f6ecec875d6f302dddd2c41ca9873e757674084c84
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 11 Feb 2023 07:14:53 GMT
age: 1327
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11608
Expires: Sat, 11 Feb 2023 10:50:28 GMT
Date: Sat, 11 Feb 2023 07:37:00 GMT
Connection: keep-alive
push.services.mozilla.com/
35.163.172.149101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.172.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G2fsKv06uTb6twUahNlLfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MkP0XCM1HMeAe52SUikrvaojDOU=
alexatracker.com/?r=aHR0cHM6Ly93d3cyLmRhdGVleG90aWMuY29tL2FnRUE%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%3D%3D&h=2257419b51f93e4f5ab35e320a438900
104.21.85.99301 Moved Permanently 0 B URL HTTP/2 alexatracker.com/?r=aHR0cHM6Ly93d3cyLmRhdGVleG90aWMuY29tL2FnRUE%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%3D%3D&h=2257419b51f93e4f5ab35e320a438900
IP 104.21.85.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?r=aHR0cHM6Ly93d3cyLmRhdGVleG90aWMuY29tL2FnRUE%2FdXNpZD1zOGhucGExZTFjcXEmZW1haWw9amFzb24uZ2FudCU0MHNsdXJwbWFpbC5uZXQmc3ViMT1jbGVhcl9tYWluJnByaWQ9czhobnBhMWUxY3FxJmJkYXRhPWV5SmtZWFJoSWpwN0luQnNZWFJtYjNKdElqb2lUR2x1ZFhnZ2VEZzJYelkwSW4wc0ltVjRkSEpoSWpwN0lrNWhkbWxuWVhSdmNpNXdiR0YwWm05eWJTSTZXeUpNYVc1MWVDQndiR0YwWm05eWJTQmhibVFnVjJsdVpHOTNjeUIxYzJWeUlHRm5aVzUwSUdSdklHNXZkQ0J0WVhSamFDSmRmU3dpWlhKeWIzSnpJanA3SW1sbWNtRnRaU0k2V3lKallXNG5kQ0JoWTJObGMzTWdjSEp2Y0dWeWRIa2dYQ0poY0hCbGJtUkRhR2xzWkZ3aUxDQmtiMk4xYldWdWRDNWliMlI1SUdseklHNTFiR3dpWFN3aVkyRnVkbUZ6WDJOdmJuUmxlSFFpT2xzaVJtRnBiR1ZrSUhSdklHZGxkQ0JqWVc1MllYTWdZMjl1ZEdWNGRDSmRmU3dpWW05MFUyTnZjbVVpT2lJeU5DSjkmYnQ9MTY3NjEwMTAyMCZidGg9MzI5OTU2MTAxMQ%3D%3D&h=2257419b51f93e4f5ab35e320a438900 HTTP/1.1
Host: alexatracker.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dateexotic.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 11 Feb 2023 07:37:01 GMT
content-length: 0
location: https://www2.dateexotic.com/agEA?usid=s8hnpa1e1cqq&email=jason.gant%40slurpmail.net&sub1=clear_main&prid=s8hnpa1e1cqq&bdata=eyJkYXRhIjp7InBsYXRmb3JtIjoiTGludXggeDg2XzY0In0sImV4dHJhIjp7Ik5hdmlnYXRvci5wbGF0Zm9ybSI6WyJMaW51eCBwbGF0Zm9ybSBhbmQgV2luZG93cyB1c2VyIGFnZW50IGRvIG5vdCBtYXRjaCJdfSwiZXJyb3JzIjp7ImlmcmFtZSI6WyJjYW4ndCBhY2Nlc3MgcHJvcGVydHkgXCJhcHBlbmRDaGlsZFwiLCBkb2N1bWVudC5ib2R5IGlzIG51bGwiXSwiY2FudmFzX2NvbnRleHQiOlsiRmFpbGVkIHRvIGdldCBjYW52YXMgY29udGV4dCJdfSwiYm90U2NvcmUiOiIyNCJ9&bt=1676101020&bth=3299561011&tbsession=3920977973790328221&c=3518414172
set-cookie: trbarid=3920977973790328221;expires=Mon, 10 Feb 2025 07:37:01 GMT;secure;HttpOnly;SameSite=None;path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0yLEKHrSULsiU1TuE1A3fH8DMPYxwiqsMFE2an3oN7UwbYv88bfyEvWCCprt6REttEGcCPa5GTXayZiXBxcOkHDLA9eEOblwf8r%2FbeP5fBlRVekkiwBOrs1YhwSMdOuxQjnj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 797b6ab588b9b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b89ff927088f4e0911007396e266d3be
be64d13223c0c3b08128fba3f7223999743042b4
34f04eda1c56dba878f90c6aa546ef98b41c71603409e0d54d9544c05e4bc790
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34F04EDA1C56DBA878F90C6AA546EF98B41C71603409E0D54D9544C05E4BC790"
Last-Modified: Fri, 10 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 11 Feb 2023 13:37:01 GMT
Date: Sat, 11 Feb 2023 07:37:01 GMT
Connection: keep-alive
datingero.com/GwAA/12126/oth?i=O-mwSmPnRZ0&u=3920977973790328221
185.151.246.147200 OK 7.8 kB URL HTTP/1.1 datingero.com/GwAA/12126/oth?i=O-mwSmPnRZ0&u=3920977973790328221
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (467), with CRLF, LF line terminators
Hash 0a3c9b8464b63c3024fab3942bc1921f
f49c87fafe36c8a33cb696ba2450da4cd7b746b4
364204b531e19355f82ae1ee392b3661b399bdc9640cbefeb56bd727512c14a5
GET /GwAA/12126/oth?i=O-mwSmPnRZ0&u=3920977973790328221 HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dateexotic.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
X-Cache-Status: MISS
Content-Encoding: gzip
datingero.com/static/BAAA/style.css
185.151.246.147200 OK 9.0 kB URL HTTP/1.1 datingero.com/static/BAAA/style.css
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type ASCII text, with CRLF line terminators
Hash 755d944baae809e8d3466ea04f6c05a5
740b6b89b852cde67fd0236b6c6f036bededed61
ae62b02ef2a9f029fe647cb691448e66048fb9f46b876285bb7b9f4df4440d59
GET /static/BAAA/style.css HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: text/css
Content-Length: 9025
Connection: keep-alive
Last-Modified: Mon, 04 Mar 2019 12:10:26 GMT
ETag: "5c7d15b2-2341"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
js.sentry-cdn.com/f44bbfb9a37b4915ac9fa50036de00f6.min.js
151.101.130.217200 OK 1.1 kB URL HTTP/2 js.sentry-cdn.com/f44bbfb9a37b4915ac9fa50036de00f6.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (501)
Hash feca1a3dba66a640a015e608b64665b8
2f821237fc2e151548680a7a4175bb0ecc1753fb
73278ef5964c93c59f2dd83d9ca8a118f4d06b8f03b0abe7a55451b5667144b0
GET /f44bbfb9a37b4915ac9fa50036de00f6.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datingero.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 11
content-encoding: gzip
accept-ranges: bytes
date: Sat, 11 Feb 2023 07:37:02 GMT
age: 20
x-served-by: getsentry-web-default-common-production-7874d76c57-dtjnf, cache-bma1674-BMA
vary: Accept-Encoding
timing-allow-origin: https://sentry.io
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1065
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e80a8cdd8f04526fbff10a818733b343
03ed53bd30b847648a5cffa1b30c1234a146fe8a
2a283685ed6df2eabc7decaf73fb4cc5d2fe2c9f99fc7a75b2c62bac32b356e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e80a8cdd8f04526fbff10a818733b343
03ed53bd30b847648a5cffa1b30c1234a146fe8a
2a283685ed6df2eabc7decaf73fb4cc5d2fe2c9f99fc7a75b2c62bac32b356e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e80a8cdd8f04526fbff10a818733b343
03ed53bd30b847648a5cffa1b30c1234a146fe8a
2a283685ed6df2eabc7decaf73fb4cc5d2fe2c9f99fc7a75b2c62bac32b356e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.74200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 Feb 2023 10:31:36 GMT
expires: Sat, 10 Feb 2024 10:31:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 75926
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:700
142.250.74.138200 OK 999 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:700
IP 142.250.74.138:0
Hash f43fd0a09962603497fc5cbecba8e41d
e8dd5773da94710509bf76da352c1146ca6403b9
aa042bc4a9ab6132ab99ebcddc0fe672e15aabecb37baec3303e47ec48d58136
GET /css?family=Oswald:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 Feb 2023 07:37:02 GMT
date: Sat, 11 Feb 2023 07:37:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3271824d2a74aa6d254e9c1251b3465a
eac1dd5e83c55939c08e7d0262fdebd029902f0d
1bd41135fb36cac496d02a1ba7ccfa5e8ebba6d11b65c41fb00e54743db145fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BD41135FB36CAC496D02A1BA7CCFA5E8EBBA6D11B65C41FB00E54743DB145FA"
Last-Modified: Fri, 10 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3231
Expires: Sat, 11 Feb 2023 08:30:53 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3271824d2a74aa6d254e9c1251b3465a
eac1dd5e83c55939c08e7d0262fdebd029902f0d
1bd41135fb36cac496d02a1ba7ccfa5e8ebba6d11b65c41fb00e54743db145fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BD41135FB36CAC496D02A1BA7CCFA5E8EBBA6D11B65C41FB00E54743DB145FA"
Last-Modified: Fri, 10 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3231
Expires: Sat, 11 Feb 2023 08:30:53 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e78ade4-5c30-41bb-8f66-9de4192a403d.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e78ade4-5c30-41bb-8f66-9de4192a403d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c72f167db33e71f9b676ae0fef5d8191
d6c577c794b1b715dccb71135d71caab66dd0baf
539514275eaeb7d87e0ea8c5bb38dd680498a8d912844c814ccc5d4b4ded5036
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e78ade4-5c30-41bb-8f66-9de4192a403d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7278
x-amzn-requestid: d2199461-3395-493f-96dd-f82de019f368
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AJH0PG0BIAMFZDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e6b9b4-3aafdf74366a98a7739dd5f4;Sampled=0
x-amzn-remapped-date: Fri, 10 Feb 2023 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B6mOCNW1JndrSemvdxkbx7do1bAORLCK6SHcWLkL6nThtuC4TEOyKw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 21:54:47 GMT
age: 34935
etag: "d6c577c794b1b715dccb71135d71caab66dd0baf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.37.1/bundle.es5.min.js
151.101.130.217200 OK 21 kB URL HTTP/2 browser.sentry-cdn.com/7.37.1/bundle.es5.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (64010)
Hash d1f4a6aa0f4d3d19119fa2fc2a2a2ca3
8f1cde29a0186e96405d0d6060b9e2905e40e7d9
80ecfefe535fa0b114d842a73066b58cbaed4b536eec384ec59fe575f932083f
GET /7.37.1/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datingero.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 10 Feb 2024 18:26:51 GMT
last-modified: Fri, 10 Feb 2023 15:36:39 GMT
etag: "d1f4a6aa0f4d3d19119fa2fc2a2a2ca3"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 11 Feb 2023 07:37:02 GMT
age: 47411
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20814
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19cc035-f1f4-49fe-b677-6257cdc564bf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19cc035-f1f4-49fe-b677-6257cdc564bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8f758759a7de044863863bca0fa0e74
e5854817d4411f5eb66114ab895a701a9a9fcd94
43a4f950a198daf4e4a6e70af830d2529e9470edf158dd7b814d2a0b0d295151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19cc035-f1f4-49fe-b677-6257cdc564bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13204
x-amzn-requestid: f2239d37-db34-4aae-809f-03f45b6a4236
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACprmFyRoAMF2kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e42316-3bdd71122a0dc5fe046d6fb9;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 22:32:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xHpCciuTQ-VKPcMV0l1Idx4XoU0NPAC_l1qBu0Kfdq8c1JSVgCM79Q==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 17:52:24 GMT
age: 49478
etag: "e5854817d4411f5eb66114ab895a701a9a9fcd94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c2a9716-e81c-48ef-8f73-0e8cea020e70.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c2a9716-e81c-48ef-8f73-0e8cea020e70.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89bb16930350a80657431890efdd159b
6aa4a1e96728bf347f9294ddf834508e0674cdbe
b156298384f7ba9f48a0789046205aca1db16279cd9138371587389f1e9c72cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c2a9716-e81c-48ef-8f73-0e8cea020e70.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8775
x-amzn-requestid: 287b0a4e-5e05-4e4c-92fe-1a7300137cb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACrnsEb3IAMFc8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e42630-17839a414ba9d70e116c4508;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 22:46:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TK2KQ-d-DiLBOdOV2cBs7Js5r2mJo0xTl6KUsbZqdIIrNGfSEy4ORA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 14:31:02 GMT
age: 61560
etag: "6aa4a1e96728bf347f9294ddf834508e0674cdbe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8549ba37-622d-41b5-9f16-d24a277bc6d0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8549ba37-622d-41b5-9f16-d24a277bc6d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4466b6f62259425af3b05f15cda508c9
5ddc1996d869b6ccf3b3f6ada7c950a7933d3ba4
2938f195e9618db890dc35852bbf7835ea18b19f547bfd62ffeae59471506171
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8549ba37-622d-41b5-9f16-d24a277bc6d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12341
x-amzn-requestid: 5747fdb7-3964-4369-9dee-d81edfe04f0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f86KhE0boAMFQ5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1d70f-3429bfbf4bfd05366474e2f0;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 04:43:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1nZGDUFh2fUhC3N-L_-CNobsWxkKCLF2pBCMZWyx3PQx6eK9wpgfzg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Feb 2023 03:47:42 GMT
age: 13760
etag: "5ddc1996d869b6ccf3b3f6ada7c950a7933d3ba4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e80a8cdd8f04526fbff10a818733b343
03ed53bd30b847648a5cffa1b30c1234a146fe8a
2a283685ed6df2eabc7decaf73fb4cc5d2fe2c9f99fc7a75b2c62bac32b356e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F120b3e30-9157-4731-886b-3545eece0d63.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F120b3e30-9157-4731-886b-3545eece0d63.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9fff218823af42c6448774aab45af788
9dd1b8fe089aecb7e4d2223c95e783566097c9ec
a35af8b9354517123c8d28adc551807499f519836187e5fa02bec16d0a6c8b05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F120b3e30-9157-4731-886b-3545eece0d63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10638
x-amzn-requestid: 39b9c272-2606-43dd-a3ea-ada0172b7b4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWW1GcVIAMFmog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de042b-5f608ed777cd0b6f7ea9adda;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CvWlo4xLQsAyjuLrSE3g8mxfh9mzT5fenjLCdlQ4ep3z8Rkm-Fwqkw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 11 Feb 2023 06:14:43 GMT
age: 4939
etag: "9dd1b8fe089aecb7e4d2223c95e783566097c9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bce8c7046e8ddfc402022215eefd6b1
d45fa6c8572eacc6243716f9307f2c4274258f3b
8236b94ecde190db3f8712e7e02e225e9735c548d6a6bb6c0666c3913d16cad5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8236B94ECDE190DB3F8712E7E02E225E9735C548D6A6BB6C0666C3913D16CAD5"
Last-Modified: Fri, 10 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3231
Expires: Sat, 11 Feb 2023 08:30:53 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0310efc-dfcb-4a80-89cb-2bfcff491c57.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0310efc-dfcb-4a80-89cb-2bfcff491c57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e87de5f03d33fcbf8f78ee05e7cd7b3d
fbaca4d769fba73b887572863e7fd299679e3411
2eee77b2566d4fa149a0e18a667cb569855820701a2a741510e8446b838385c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0310efc-dfcb-4a80-89cb-2bfcff491c57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7120
x-amzn-requestid: ccadfe8a-cb56-4ed3-847d-8c97344d0351
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AAjFLE9qIAMF_Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e34bba-0a888bd35dd4851416b92b4c;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 07:14:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KojYawTczbq8yv49HeGt_ikH8RBbL_2LQ-vIaZVrdtzkxV-FKcVvlA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 10 Feb 2023 22:38:21 GMT
age: 32321
etag: "fbaca4d769fba73b887572863e7fd299679e3411"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash e80a8cdd8f04526fbff10a818733b343
03ed53bd30b847648a5cffa1b30c1234a146fe8a
2a283685ed6df2eabc7decaf73fb4cc5d2fe2c9f99fc7a75b2c62bac32b356e8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bce8c7046e8ddfc402022215eefd6b1
d45fa6c8572eacc6243716f9307f2c4274258f3b
8236b94ecde190db3f8712e7e02e225e9735c548d6a6bb6c0666c3913d16cad5
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "8236B94ECDE190DB3F8712E7E02E225E9735C548D6A6BB6C0666C3913D16CAD5"
Last-Modified: Fri, 10 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3231
Expires: Sat, 11 Feb 2023 08:30:53 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash a501ea117db363616aa338f26a520112
79dc243b72a956578d0ca69eb3f01c54bf997693
16c4b958499b13bd8b7c7b7837ced4f834682ba01cfd0424ed7b5216c13c2386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash a501ea117db363616aa338f26a520112
79dc243b72a956578d0ca69eb3f01c54bf997693
16c4b958499b13bd8b7c7b7837ced4f834682ba01cfd0424ed7b5216c13c2386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6eef273586d0ef5ebbd50995b35005cf
51314359fe49372505155ea2d8e80750012e0a07
4d88b942b813330aed891eebad51fffbd515ccd3e23267ef14273103053a5324
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D88B942B813330AED891EEBAD51FFFBD515CCD3E23267EF14273103053A5324"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5057
Expires: Sat, 11 Feb 2023 09:01:19 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
216.58.207.227200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 10172, version 1.0\012- data
Hash 58e5c92fd1a1fc89b8ca6d74ce4793b8
337771c465778aeed6de18195e0cbe9d9098d299
6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datingero.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Feb 2023 18:05:37 GMT
expires: Fri, 09 Feb 2024 18:05:37 GMT
cache-control: public, max-age=31536000
age: 135085
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash a501ea117db363616aa338f26a520112
79dc243b72a956578d0ca69eb3f01c54bf997693
16c4b958499b13bd8b7c7b7837ced4f834682ba01cfd0424ed7b5216c13c2386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datingero.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 Feb 2023 17:05:47 GMT
expires: Sat, 10 Feb 2024 17:05:47 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 52275
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
o65532.ingest.sentry.io/api/6161109/envelope/?sentry_key=f44bbfb9a37b4915ac9fa50036de00f6&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.37.1
34.120.195.249200 OK 2 B URL HTTP/2 o65532.ingest.sentry.io/api/6161109/envelope/?sentry_key=f44bbfb9a37b4915ac9fa50036de00f6&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.37.1
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/6161109/envelope/?sentry_key=f44bbfb9a37b4915ac9fa50036de00f6&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.37.1 HTTP/1.1
Host: o65532.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datingero.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://datingero.com
Content-Length: 426
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 11 Feb 2023 07:37:02 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: https://datingero.com
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash a501ea117db363616aa338f26a520112
79dc243b72a956578d0ca69eb3f01c54bf997693
16c4b958499b13bd8b7c7b7837ced4f834682ba01cfd0424ed7b5216c13c2386
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 11 Feb 2023 07:37:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6eef273586d0ef5ebbd50995b35005cf
51314359fe49372505155ea2d8e80750012e0a07
4d88b942b813330aed891eebad51fffbd515ccd3e23267ef14273103053a5324
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D88B942B813330AED891EEBAD51FFFBD515CCD3E23267EF14273103053A5324"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5057
Expires: Sat, 11 Feb 2023 09:01:19 GMT
Date: Sat, 11 Feb 2023 07:37:02 GMT
Connection: keep-alive
datingero.com/static/BAAA/fon-black-3.jpg
185.151.246.147200 OK 319 kB URL HTTP/1.1 datingero.com/static/BAAA/fon-black-3.jpg
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 319 kB (319308 bytes)
Hash f56a3caa703a84b5344c5c75aaed3364
10bec291e7266499c9f5d3142aaf4207480cfda7
49e3ca223d626e90cdd7359a48a9cb992ec54cca5cc059a8e5347b61e55fda98
GET /static/BAAA/fon-black-3.jpg HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://datingero.com/static/BAAA/style.css
Cookie: slappInfo64_O-mwSmPnRZ0=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJPLW13U21QblJaMCIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6bnVsbCwibGFuZGluZ1BhZ2VDb25maWciOm51bGwsImV4dHJhUmVxdWVzdERhdGEiOm51bGwsInNob3dlZFBvcHMiOjAsInVyaSI6Imh0dHBzOi8vZGF0aW5nZXJvLmNvbS9Hd0FBLzEyMTI2L290aD9pPU8tbXdTbVBuUlowJnU9MzkyMDk3Nzk3Mzc5MDMyODIyMSIsInNlYXJjaCI6Ij9pPU8tbXdTbVBuUlowJnU9MzkyMDk3Nzk3Mzc5MDMyODIyMSIsImNvbnRhY3RFeGlzdHMiOmZhbHNlfQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: image/jpeg
Content-Length: 319308
Connection: keep-alive
Last-Modified: Wed, 26 Sep 2018 08:25:30 GMT
ETag: "5bab427a-4df4c"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
app.api-push.com/get-keys
172.64.162.28204 No Content 0 B URL HTTP/2 app.api-push.com/get-keys
IP 172.64.162.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://datingero.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 11 Feb 2023 07:37:02 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: content-type
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2Fue%2FqZ9ji8cz8Yg3f6CbPzwbhhewdyKxGAMw1HYwKyFJfc9F6KuL1b826z8p4vVIpNhKMaX1%2Bp8A1Ddd2uEepfS4q9HYRFJDFh1vkj2U%2FfEmxtMyxoDOaQsg4SRe8jU2EPF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 797b6abddb0071f2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
datingero.com/stats
185.151.246.147200 OK 375 B IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type JSON data\012- , ASCII text, with very long lines (375), with no line terminators
Hash 7b8e8e9cd534d5b57757a6823377ae8a
b502d663d40b63cec7e1a92b45c2a14e6b1295f9
f71ec3cb50bec74781c5da958468a1665d87cadf0b6de5be2a0629901e997b32
POST /stats HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 402
Origin: https://datingero.com
Connection: keep-alive
Cookie: slappInfo64_O-mwSmPnRZ0=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
datingero.com/static/BAAA/favicon-150x150.png
185.151.246.147200 OK 2.6 kB URL HTTP/1.1 datingero.com/static/BAAA/favicon-150x150.png
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type PNG image data, 270 x 270, 8-bit gray+alpha, non-interlaced\012- data
Hash a942a3268453194d872f5fd38f01d316
d4a851f12cc7024050cbf7c99642004299e28a28
39df9ff9ca533925141252942c2ca3ab78abc75641923367d302c03352fe19e4
GET /static/BAAA/favicon-150x150.png HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: slappInfo64_O-mwSmPnRZ0=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: image/png
Content-Length: 2634
Connection: keep-alive
Last-Modified: Tue, 04 Dec 2018 15:24:42 GMT
ETag: "5c069c3a-a4a"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
datingero.com/user-id?nbl=&impression=O-mwSmPnRZ0&trustLevel=0&botScore=0&finishClicksCount=0&landingConfig=&landingPageConfig=&extraRequestData=&showedPops=0&uri=https%3A%2F%2Fdatingero.com%2FGwAA%2F12126%2Foth%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&search=%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&contactExists=false
185.151.246.147200 OK 38 B URL HTTP/1.1 datingero.com/user-id?nbl=&impression=O-mwSmPnRZ0&trustLevel=0&botScore=0&finishClicksCount=0&landingConfig=&landingPageConfig=&extraRequestData=&showedPops=0&uri=https%3A%2F%2Fdatingero.com%2FGwAA%2F12126%2Foth%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&search=%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&contactExists=false
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type JSON data\012- , ASCII text, with no line terminators
Hash 37fe3b69438cb1d239b5bbc3ecfa8af4
a4f886a0bccc4568926765e37a09a87a1b801f8f
71a821692e9a32ef4acdc178c64ea9f5ff22577dd4433af13afd203a535d8a43
GET /user-id?nbl=&impression=O-mwSmPnRZ0&trustLevel=0&botScore=0&finishClicksCount=0&landingConfig=&landingPageConfig=&extraRequestData=&showedPops=0&uri=https%3A%2F%2Fdatingero.com%2FGwAA%2F12126%2Foth%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&search=%3Fi%3DO-mwSmPnRZ0%26u%3D3920977973790328221&contactExists=false HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: slappInfo64_O-mwSmPnRZ0=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJPLW13U21QblJaMCIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6eyJ0cmFmZmljV2l0aEVtYWlsQ2FzY2FkZUlkIjp0cnVlLCJyZWFsVXNlcnNDYXNjYWRlSWQiOnRydWUsIm1haW5DYXNjYWRlIjp0cnVlLCJiYWNrQ2FzY2FkZSI6dHJ1ZSwic2Vjb25kQ2xpY2tDYXNjYWRlIjp0cnVlLCJwb3BzQ2FzY2FkZSI6ZmFsc2UsInBvcHNDb3VudCI6MX0sImxhbmRpbmdQYWdlQ29uZmlnIjp7ImJhbm5lckNvZGUiOiIiLCJiYW5uZXJQb3NpdGlvbiI6MX0sImV4dHJhUmVxdWVzdERhdGEiOnsic3ViaWQxIjoiY2xlYXJfbWFpbiIsInN1YmlkMiI6IiIsInN1YmlkMyI6IiIsInN1YmlkNCI6IiIsInN1YmlkNSI6IiIsInBob25lIjoiIiwiZW1haWwiOiJqYXNvbi5nYW50QHNsdXJwbWFpbC5uZXQifSwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9kYXRpbmdlcm8uY29tL0d3QUEvMTIxMjYvb3RoP2k9Ty1td1NtUG5SWjAmdT0zOTIwOTc3OTczNzkwMzI4MjIxIiwic2VhcmNoIjoiP2k9Ty1td1NtUG5SWjAmdT0zOTIwOTc3OTczNzkwMzI4MjIxIiwiY29udGFjdEV4aXN0cyI6ZmFsc2UsImV2ZW50IjoibG9hZCIsImRhdGEiOnsicmVzcG9uc2VTdGFydCI6MTQ5NywiZG9tSW50ZXJhY3RpdmUiOjE3OTUsImRvbUNvbXBsZXRlIjoxOTk5fX0=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: userid=b6a493a6486f7ccf127d060da7439f5f9104358ccbf3b7f7014c975dcf4d5149a%3A2%3A%7Bi%3A0%3Bs%3A6%3A%22userid%22%3Bi%3A1%3Bi%3A266735655721%3B%7D; expires=Mon, 12-Feb-2024 03:53:42 GMT; Max-Age=31609000; path=/; HttpOnly; SameSite=Lax
Access-Control-Allow-Origin: *
datingero.com/static/BAAA/favicon-16x16.png
185.151.246.147200 OK 534 B URL HTTP/1.1 datingero.com/static/BAAA/favicon-16x16.png
IP 185.151.246.147:0
ASN #61251 Host4Biz sp. z o.o.
File type PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced\012- data
Hash 90514f324e67cbfeea03f20d8ee33928
32904715b4f1811c3fe9e6d74de7f46ea75f2c5b
5cfc3d8c5351ef79c974dceff85041ebea8aa490485fe14e38154fa6ecc4bf75
GET /static/BAAA/favicon-16x16.png HTTP/1.1
Host: datingero.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: slappInfo64_O-mwSmPnRZ0=eyJuYmwiOm51bGwsImltcHJlc3Npb24iOiJPLW13U21QblJaMCIsInRydXN0TGV2ZWwiOjAsImJvdFNjb3JlIjowLCJmaW5pc2hDbGlja3NDb3VudCI6MCwibGFuZGluZ0NvbmZpZyI6eyJ0cmFmZmljV2l0aEVtYWlsQ2FzY2FkZUlkIjp0cnVlLCJyZWFsVXNlcnNDYXNjYWRlSWQiOnRydWUsIm1haW5DYXNjYWRlIjp0cnVlLCJiYWNrQ2FzY2FkZSI6dHJ1ZSwic2Vjb25kQ2xpY2tDYXNjYWRlIjp0cnVlLCJwb3BzQ2FzY2FkZSI6ZmFsc2UsInBvcHNDb3VudCI6MX0sImxhbmRpbmdQYWdlQ29uZmlnIjp7ImJhbm5lckNvZGUiOiIiLCJiYW5uZXJQb3NpdGlvbiI6MX0sImV4dHJhUmVxdWVzdERhdGEiOnsic3ViaWQxIjoiY2xlYXJfbWFpbiIsInN1YmlkMiI6IiIsInN1YmlkMyI6IiIsInN1YmlkNCI6IiIsInN1YmlkNSI6IiIsInBob25lIjoiIiwiZW1haWwiOiJqYXNvbi5nYW50QHNsdXJwbWFpbC5uZXQifSwic2hvd2VkUG9wcyI6MCwidXJpIjoiaHR0cHM6Ly9kYXRpbmdlcm8uY29tL0d3QUEvMTIxMjYvb3RoP2k9Ty1td1NtUG5SWjAmdT0zOTIwOTc3OTczNzkwMzI4MjIxIiwic2VhcmNoIjoiP2k9Ty1td1NtUG5SWjAmdT0zOTIwOTc3OTczNzkwMzI4MjIxIiwiY29udGFjdEV4aXN0cyI6ZmFsc2UsImV2ZW50IjoibG9hZCIsImRhdGEiOnsicmVzcG9uc2VTdGFydCI6MTQ5NywiZG9tSW50ZXJhY3RpdmUiOjE3OTUsImRvbUNvbXBsZXRlIjoxOTk5fX0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 Feb 2023 07:37:02 GMT
Content-Type: image/png
Content-Length: 534
Connection: keep-alive
Last-Modified: Tue, 04 Dec 2018 15:24:42 GMT
ETag: "5c069c3a-216"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
dateexotic.com/agEA?usid=s8hnpa1e1cqq&email=jason.gant%40slurpmail.net&sub1=clear_main&prid=s8hnpa1e1cqq
104.21.34.109200 OK 0 B URL HTTP/2 dateexotic.com/agEA?usid=s8hnpa1e1cqq&email=jason.gant%40slurpmail.net&sub1=clear_main&prid=s8hnpa1e1cqq
IP 104.21.34.109:0
GET /agEA?usid=s8hnpa1e1cqq&email=jason.gant%40slurpmail.net&sub1=clear_main&prid=s8hnpa1e1cqq HTTP/1.1
Host: dateexotic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 11 Feb 2023 07:37:00 GMT
content-type: text/html
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Advcwregk44hIUnOIT0sh%2BbJSENpRfxGC2dEsqj2Y%2BPZQsxOR8rqsAf7UOjEW7JgcAn8Nei%2BSILsNerpIFPMYNiBY0y3UnQxd%2FqbkBdqPyOAEv4S62fmvkLNBs5WfP01Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 797b6ab0cf63b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn-static3.com/cdn/push.min.js
172.67.137.111200 OK 0 B URL HTTP/2 cdn-static3.com/cdn/push.min.js
IP 172.67.137.111:0
GET /cdn/push.min.js HTTP/1.1
Host: cdn-static3.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 11 Feb 2023 07:37:02 GMT
content-type: application/x-javascript
content-security-policy: block-all-mixed-content
etag: W/"44c9e373bc246e347c8420a2eb8f54d4"
last-modified: Mon, 06 Jun 2022 20:30:35 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 16F62DA8BBE7EAAC
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=14400
cf-cache-status: HIT
age: 6138
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2BjR4mtmyftaEaXiLeoCyiSiAnthTxmFvoXhB4bUszydc6UK%2FfckL8WnDnRdBAcSUor7yFtqMH8tI7jScfBl5hUwZv%2FhaJi6WayigG8ZVAHudawJPi8ORl9sqHOpXc7axMs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 797b6abd0e34b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:100,400,700,900
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:100,400,700,900
IP 142.250.74.138:0
GET /css?family=Montserrat:100,400,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 Feb 2023 07:37:02 GMT
date: Sat, 11 Feb 2023 07:37:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
app.api-push.com/get-keys
172.64.162.28200 OK 0 B URL HTTP/2 app.api-push.com/get-keys
IP 172.64.162.28:0
POST /get-keys HTTP/1.1
Host: app.api-push.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 174
Origin: https://datingero.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 11 Feb 2023 07:37:02 GMT
content-type: application/json; charset=utf-8
vary: Origin
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,POST,DELETE,PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IO0MidUn86eIUyOD4htSePaPhj2llSDRSwezke8qZiT21GRcagKJGE7CvrBZazSrIyjMYalAMA%2Fcu17Uif%2BfsY6d9dSri5s2GC7ddRfU7wYFooVLQbgNlbVIjbWABhgvfg9q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 797b6abeab9a71f2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2