| my.rtmark.net/img.gif?f=merge&userId=ab18b1453f744e1dac8c3424f24d73b1 | 139.45.195.8 | | 43 B |
URL my.rtmark.net/img.gif?f=merge&userId=ab18b1453f744e1dac8c3424f24d73b1 IP139.45.195.8:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=ab18b1453f744e1dac8c3424f24d73b1 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ungroudonchan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:16 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ab18b1453f744e1dac8c3424f24d73b1; expires=Wed, 08 May 2024 10:19:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ungroudonchan.com/?z=5757188&syncedCookie=true&rhd=false | 139.45.197.238 | 302 Found | 0 B |
URL User Request POST HTTP/2ungroudonchan.com/?z=5757188&syncedCookie=true&rhd=false IP139.45.197.238:443
CertificateIssuerLet's Encrypt Subjectungroudonchan.com Fingerprint7A:F6:16:A2:CF:CF:F1:B3:72:DF:C8:6E:A3:70:F4:06:12:5C:99:2B ValiditySat, 08 Apr 2023 05:33:38 GMT - Fri, 07 Jul 2023 05:33:37 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?z=5757188&syncedCookie=true&rhd=false HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 429
Origin: https://ungroudonchan.com
DNT: 1
Connection: keep-alive
Referer: https://ungroudonchan.com/afu.php?zoneid=5757188&var=5757188&rid=uZkGuFtJfk-T2gq_XdzZSg%3D%3D&rhd=false
Cookie: OAID=ab18b1453f744e1dac8c3424f24d73b1; oaidts=1683627556
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 09 May 2023 10:19:16 GMT
content-length: 0
location: https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188
x-trace-id: d6567d700afc5059981dbc602a735478
link: <https://www.mysexymatches.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://xobr219pa.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
access-control-allow-origin: https://ungroudonchan.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=ab18b1453f744e1dac8c3424f24d73b1; expires=Wed, 08 May 2024 10:19:16 GMT; path=/; secure; SameSite=None
oaidts=1683627556; expires=Wed, 08 May 2024 10:19:16 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 16 May 2023 10:19:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | | 471 B |
IP104.18.32.68:0
Hash78d02194664794581bafb05ee59775f3 c3ac07e9623c4d6dee7b6b96576352d4cdfac19e 3affc07ebb9923424c927b03c4c9fae3b85e6ab4069a05ff4e33da1f9ad7872b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 09 May 2023 10:19:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 08 May 2023 02:07:08 GMT
Expires: Mon, 15 May 2023 02:07:07 GMT
Etag: "c3ac07e9623c4d6dee7b6b96576352d4cdfac19e"
Cache-Control: max-age=488270,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c4934049c41b50f-OSL
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/css/stylesheet.css?1669995966 | 23.36.76.194 | 200 OK | 1.3 kB |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/css/stylesheet.css?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash8196a9f7321975d3b06574de1095f7b8 958b12af03cee5e6b96c7d03493f126a2a3931c8 ac48eeab2289762113d8a1bc82eafa6af17cd70e2fe03bfce3b4fefb29951780
GET /landings/277419/1669995966/css/stylesheet.css?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 8+Ko1lb4bEGjQFtc0vUOloHz9qE5GWEeW5qyEH/3I1tNo6wyPeMxwj9NR1J0MaoTioNl77ksxwM=
x-amz-request-id: F34EQHW776AA2E3S
Last-Modified: Fri, 02 Dec 2022 15:46:08 GMT
ETag: "8196a9f7321975d3b06574de1095f7b8"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Length: 1266
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/js/jquery.min.js?1669995966 | 23.36.76.194 | 200 OK | 30 kB |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/js/jquery.min.js?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /landings/277419/1669995966/js/jquery.min.js?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: 1tdB4q9dfEQd1bC2mMotNqHRjbCEGQ0QDcnXBc8wgZ/gJd828utRw69oHtptMEmurgXovUOoufU=
x-amz-request-id: 3N39SVF38SJ7N63Y
Last-Modified: Fri, 02 Dec 2022 15:46:08 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/js/secondofferv2.js?1669995966 | 23.36.76.194 | 200 OK | 454 B |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/js/secondofferv2.js?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
Hash9bbe216b8e526fd98d219f2b91ccaa57 3f5d1be91ba58b6501c022155fe6778ce82b1663 1c83d2863f746a234e46c5578826ceeb8cbe126bc4c274ca679295441c44b948
GET /landings/277419/1669995966/js/secondofferv2.js?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: xT1VfiD/gDu7mGS2SB+4fEAa7xPf3tUn5q0B+kr1Sn6JzaJm3G2pSjcldU0dUusQrkTB3yljSMc=
x-amz-request-id: YXPMHDVQP0FEF9C8
Last-Modified: Fri, 02 Dec 2022 15:46:09 GMT
ETag: "9bbe216b8e526fd98d219f2b91ccaa57"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Length: 454
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/js/backoffer.js?1669995966 | 23.36.76.194 | 200 OK | 430 B |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/js/backoffer.js?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (430), with no line terminators Hash6d5aa83d23ce0b9f72d3b87d000d8fae 034fb8768eb58ffc0b5849e2c162989741a6cbec 89266112a6c823b9c03dd5a32d8f1c5e9f4cbf4cf876b56c825781ea389d0800
GET /landings/277419/1669995966/js/backoffer.js?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: v1f1Ns7fb7Q4cR2Ntee8ybeaybY18IfPH9BqwE0dAo018VonckiRUPfeBvuUVrbfV7OT2dETY8k=
x-amz-request-id: YXPPYDEP11K3TXZJ
Last-Modified: Fri, 02 Dec 2022 15:46:08 GMT
ETag: "6d5aa83d23ce0b9f72d3b87d000d8fae"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 430
Date: Tue, 09 May 2023 10:19:17 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/js/main.js?1669995966 | 23.36.76.194 | 200 OK | 40 kB |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/js/main.js?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (568), with CRLF line terminators Hasha0f4da40bd81c65d824afc106743d47f 55b2d4c57fdb017314f62ac2fe8a3e287dcadf7f e40e7cc368c897d6a3a5095fae6ccd6d9a3f88af5ef9c590f79b9fd22293ad10
GET /landings/277419/1669995966/js/main.js?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: f+QX96vu+ApDvIrT4YH3Pyrk61kjWPQIIMeKbfQF6nz+0w0be+Npchhi1miy2Nc9CT7ymeeejGQ=
x-amz-request-id: 3N3CJF20S2DP1V3Q
Last-Modified: Fri, 02 Dec 2022 15:46:08 GMT
ETag: "a0f4da40bd81c65d824afc106743d47f"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Length: 40511
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 | 52.17.88.125 | 200 OK | 2.2 kB |
URL User Request GET HTTP/2www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 IP52.17.88.125:443
CertificateIssuerLet's Encrypt Subject*.mysexymatches.com FingerprintEE:12:C1:65:FE:AB:41:10:0E:D4:2A:17:04:7F:8B:94:C8:08:88:F0 ValidityMon, 06 Mar 2023 00:31:25 GMT - Sun, 04 Jun 2023 00:31:24 GMT
File typegzip compressed data, from Unix\012- data Hashda419b437e05e405b13435b1318776c4 ee70f7b16adfcb22a9a7efeeb255771f554d3ad6 8dec207c469670e3515b8f39b118efec395c366a13f35d3e7d29d523149c5d78
GET /c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 HTTP/1.1
Host: www.mysexymatches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:16 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=645a1e240001e4cc; Path=/; Expires=Sat, 08 Jul 2023 10:19:16 GMT; Secure; SameSite=None
unique_id2=645a1e240001ed09; Path=/; Expires=Mon, 07 Aug 2023 10:19:16 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Tue, 09 May 2023 10:19:16 GMT; Secure; SameSite=None
645a1e240001ed09_sl=[277419]; Path=/; Expires=Tue, 23 May 2023 10:19:16 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/images/bg.gif | 23.36.76.194 | 200 OK | 3.0 MB |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/images/bg.gif IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typeGIF image data, version 89a, 403 x 655\012- data Size3.0 MB (3015268 bytes) Hash49a2459c98974c49e78e4838a8a91020 3878cc447715455a199246de7621930bb94c0671 f27c1915d07f59b1040092c6eb696a4e450b3e70ab4988234c9c5911d3b07aef
GET /landings/277419/1669995966/images/bg.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/277419/1669995966/css/stylesheet.css?1669995966
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: dqtHzzMTHxoqMqy5ok0cr6i0XG3miiPWIrtYO3x5nFs+znKJ/KDBo/Xj41Rdn7xfILmb3eKnrE4=
x-amz-request-id: 7P31F2ZV9F2FJ8SM
Last-Modified: Fri, 02 Dec 2022 15:46:08 GMT
ETag: "49a2459c98974c49e78e4838a8a91020"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 3015268
Date: Tue, 09 May 2023 10:19:17 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js | 52.17.88.125 | 200 OK | 3.8 kB |
URL GET HTTP/2www.mysexymatches.com/js/pushjs/1.0.0/subscriber.js IP52.17.88.125:443
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subject*.mysexymatches.com FingerprintEE:12:C1:65:FE:AB:41:10:0E:D4:2A:17:04:7F:8B:94:C8:08:88:F0 ValidityMon, 06 Mar 2023 00:31:25 GMT - Sun, 04 Jun 2023 00:31:24 GMT
File typegzip compressed data, from Unix\012- data Hash3de49887f8da9a0e06b2854e3b227e19 2767d05c82eed759c48ad06036cab0283d07ca5e 03393a342401f20955521df010e5a86e54e331e772d96dd76ec6801a29e09b86
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: www.mysexymatches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188
Cookie: unique_id=645a1e240001e4cc; unique_id2=645a1e240001ed09; 645a1e240001ed09_sl=[277419]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:17 GMT
content-type: application/javascript
expires: Tue, 16 May 2023 10:19:17 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ | 142.250.74.168 | 200 OK | 42 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MLVPDTJ IP142.250.74.168:443
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File typeASCII text, with very long lines (4691) Hashba606ee3e8786aebb970a37be04fef55 3b8447dfc3b8262ea9d1d8ce9699ff669f525368 156a83439836ab5727eec56016f452510ac3d9ae90963c816a03a54184f44ab5
GET /gtm.js?id=GTM-MLVPDTJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 09 May 2023 10:19:17 GMT
expires: Tue, 09 May 2023 10:19:17 GMT
cache-control: private, max-age=900
last-modified: Tue, 09 May 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42071
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn-adef.akamaized.net/images/favicon.ico | 23.36.76.194 | 200 OK | 4.1 kB |
URL GET HTTP/1.1cdn-adef.akamaized.net/images/favicon.ico IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Hash4cdf3256cd7b8ec3917adb79d6bf457e bc615337e9223183a126c8fb649774866fb53e69 fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0
GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: mzbDFFn0Yhqdz4XL9s4sX6yByljdNVrKhKiK+UtK4DVRgNzfBI6OtL7EakQiGwqEsC19uC++cQI=
x-amz-request-id: 78F19547EBC3B810
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
Date: Tue, 09 May 2023 10:19:17 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash02dcc507b3a8f4d3488e301b4e100f03 ec9d2fc8324e7ab994a6c5f84bf430c18d71e6fe f19c395d4378d6aab6f1251cbfe9c5883d58d06474a056a3c6cf70265807e3a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 09 May 2023 10:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash6db1850d09366ec46096fbdb78be6be6 e257100c2322a02c8d77765f0594ee60f8bce473 c6020b87896be7718f346f4692a4aff6b7ff06bd5732f5e24c648c1e4434ae5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 09 May 2023 10:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash6db1850d09366ec46096fbdb78be6be6 e257100c2322a02c8d77765f0594ee60f8bce473 c6020b87896be7718f346f4692a4aff6b7ff06bd5732f5e24c648c1e4434ae5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 09 May 2023 10:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js | 142.250.74.35 | 200 OK | 10 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP142.250.74.35:443
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File typeASCII text, with very long lines (35547) Hash0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 07:32:24 GMT
expires: Sun, 05 May 2024 07:32:24 GMT
cache-control: public, max-age=31536000
age: 269213
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-app.js | 142.250.74.35 | 200 OK | 8.6 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP142.250.74.35:443
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File typeASCII text, with very long lines (25088) Hash9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 08 May 2023 07:56:27 GMT
expires: Tue, 07 May 2024 07:56:27 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 94970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| syndication.exdynsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1631457984 | 95.211.229.248 | 200 OK | 20 B |
URL GET HTTP/1.1syndication.exdynsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1631457984 IP95.211.229.248:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subjectexdynsrv.com Fingerprint54:0A:66:69:27:EA:63:01:A0:42:9B:75:C5:75:97:C3:19:3C:EC:0F ValidityMon, 27 Feb 2023 07:27:23 GMT - Sun, 28 May 2023 07:27:22 GMT
File typegzip compressed data, max speed, from Unix\012- data Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1631457984 HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-05-09%22%3B%7D%7D; expires=Wed, 08 May 2024 10:19:17 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 471 B |
IP142.250.74.131:0
Hash6db1850d09366ec46096fbdb78be6be6 e257100c2322a02c8d77765f0594ee60f8bce473 c6020b87896be7718f346f4692a4aff6b7ff06bd5732f5e24c648c1e4434ae5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 09 May 2023 10:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| syndication.realsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1733659602 | 95.211.229.246 | 200 OK | 20 B |
URL GET HTTP/1.1syndication.realsrv.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1733659602 IP95.211.229.246:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subjectrealsrv.com FingerprintC2:CA:14:12:90:2A:B3:84:F3:3C:B8:A9:E8:82:89:E0:CB:B9:EE:49 ValidityMon, 27 Feb 2023 07:33:27 GMT - Sun, 28 May 2023 07:33:26 GMT
File typegzip compressed data, max speed, from Unix\012- data Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1733659602 HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-05-09%22%3B%7D%7D; expires=Wed, 08 May 2024 10:19:17 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| s.exv6.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1739559361 | 95.211.229.247 | 200 OK | 20 B |
URL GET HTTP/1.1s.exv6.com/tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1739559361 IP95.211.229.247:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subjectexv6.com FingerprintF8:EB:4A:B3:9B:94:54:29:CA:CC:BF:03:41:62:57:90:D5:6C:F2:28 ValidityMon, 27 Feb 2023 07:28:12 GMT - Sun, 28 May 2023 07:28:11 GMT
File typegzip compressed data, max speed, from Unix\012- data Hasha4745abc5e7fdb89cc6df3069f3c6e69 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /tag.php?goal=bffb3c5e28d21c389b381a46bb5cd6e6>mcb=1739559361 HTTP/1.1
Host: s.exv6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 09 May 2023 10:19:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: goals=a%3A1%3A%7Bi%3A71748%3Ba%3A1%3A%7Bs%3A4%3A%22date%22%3Bs%3A10%3A%222023-05-09%22%3B%7D%7D; expires=Wed, 08 May 2024 10:19:17 GMT; path=/; domain=.exv6.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
|
|
| tsyndicate.com/api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d | 46.4.114.55 | 200 OK | 35 B |
URL GET HTTP/2tsyndicate.com/api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d IP46.4.114.55:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subjecttsyndicate.com Fingerprint78:C4:DB:8D:7E:12:80:0F:A0:B5:E1:B6:0B:3E:B2:46:7E:69:3D:8E ValidityWed, 12 Apr 2023 09:07:49 GMT - Tue, 11 Jul 2023 09:07:48 GMT
File typeGIF image data, version 89a, 1 x 1\012- data Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v1/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:17 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: a77a33c2137185bf
set-cookie: ts_rt_57bd9f77-0f27-4a59-a866-cfcb44429b1d=AAMC; expires=Wed, 08 May 2024 10:19:17 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| tsyndicate.com/api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d | 46.4.114.55 | 200 OK | 35 B |
URL GET HTTP/2tsyndicate.com/api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d IP46.4.114.55:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subjecttsyndicate.com Fingerprint78:C4:DB:8D:7E:12:80:0F:A0:B5:E1:B6:0B:3E:B2:46:7E:69:3D:8E ValidityWed, 12 Apr 2023 09:07:49 GMT - Tue, 11 Jul 2023 09:07:48 GMT
File typeGIF image data, version 89a, 1 x 1\012- data Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /api/v2/retargeting/set/57bd9f77-0f27-4a59-a866-cfcb44429b1d HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:17 GMT
content-type: text/plain; charset=utf-8
content-length: 35
pragma: no-cache
expires: 0
vary: *
x-api-version: 2
x-request-id: 806624e2a17c7358
set-cookie: ts_rt_57bd9f77-0f27-4a59-a866-cfcb44429b1d=AAMC; expires=Wed, 08 May 2024 10:19:17 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| cdn-adef.akamaized.net/landings/277419/1669995966/js/MB_push_NEW.js?1669995966 | 23.36.76.194 | 200 OK | 671 B |
URL GET HTTP/1.1cdn-adef.akamaized.net/landings/277419/1669995966/js/MB_push_NEW.js?1669995966 IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerDigiCert Inc Subjecta248.e.akamai.net Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37 ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (727), with no line terminators Hash5ed737cde84f4eeb689731a237c7b451 b5266351bdc2ba2edf68ff20027702a00d484093 8fdf7803afd520142c1ccd1abb6240d2ea3d5bf079b45d0b7de7fb71778be233
GET /landings/277419/1669995966/js/MB_push_NEW.js?1669995966 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: RCvhgqsVseFmfOXEnKcVyncLyjtIYNVqpZ/z9pJWd1fKjKPSySK/XYR9gYQ7bawk+9MXb9U41pw=
x-amz-request-id: 3N3F0T1ZDTHRAQZC
Last-Modified: Fri, 02 Dec 2022 15:46:09 GMT
ETag: "533a9cb9c41907529c3d603edb25d5d9"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 671
Date: Tue, 09 May 2023 10:19:17 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| www.mysexymatches.com/js/pushjs/1.0.0/utils.js | 52.17.88.125 | 200 OK | 7.1 kB |
URL GET HTTP/2www.mysexymatches.com/js/pushjs/1.0.0/utils.js IP52.17.88.125:443
Requested byhttps://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188 CertificateIssuerLet's Encrypt Subject*.mysexymatches.com FingerprintEE:12:C1:65:FE:AB:41:10:0E:D4:2A:17:04:7F:8B:94:C8:08:88:F0 ValidityMon, 06 Mar 2023 00:31:25 GMT - Sun, 04 Jun 2023 00:31:24 GMT
File typeC source, ASCII text, with very long lines (7334), with no line terminators Hash7df62062a027cd25d5a179c520f38668 0ddaa8cd9090908d987e0299cef74fbf7f118738 cdf93aff990bae251f609ef00d7d2bdbb56a35f003c7184ba067b5948629faa3
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /js/pushjs/1.0.0/utils.js HTTP/1.1
Host: www.mysexymatches.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.mysexymatches.com/c/9fa1e2ea536c4871?s1=181_6420036_cfa_web_NO_pop&s2=16086902&s3=5757188
Cookie: unique_id=645a1e240001e4cc; unique_id2=645a1e240001ed09; 645a1e240001ed09_sl=[277419]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 09 May 2023 10:19:17 GMT
content-type: application/javascript
expires: Tue, 16 May 2023 10:19:17 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|