| find-me-fuck.com/tds | 3.66.82.41 | 302 Found | 0 B |
IP3.66.82.41:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /tds HTTP/1.1
Host: find-me-fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 14 Jan 2023 19:47:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: *
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Accept-CH: UA, Platform, Model, Mobile, Arch
Set-Cookie: dci=af3677f47764b78ecb80e47f65a90bf8928f72ae; Max-Age=31536000; Domain=.find-me-fuck.com; Path=/; Expires=Sun, 14 Jan 2024 19:47:30 GMT; Secure; SameSite=None
dm=fe450dd0d1dadc615429144d33241f42; Max-Age=432000; Path=/; Expires=Thu, 19 Jan 2023 19:47:30 GMT
Location: https://find-me-fuck.com/res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hasha8b4f1afb0e830b797238d34ab9254aa e011acef3d05c959a65205d53b651ecd18a889fe f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11682
Expires: Sat, 14 Jan 2023 23:02:12 GMT
Date: Sat, 14 Jan 2023 19:47:30 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash3063227f59d1935298b0620fa7919145 478e1d8bef04b1f95381cac01829c03b6779d420 619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8647
Expires: Sat, 14 Jan 2023 22:11:37 GMT
Date: Sat, 14 Jan 2023 19:47:30 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 19:42:03 GMT
content-type: application/json
age: 327
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash64765d3d978fd74d7bc47d55d4f097cf 92eb3f0d55ba99be28105c0b28ef7dd456817f1f 761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17042
Expires: Sun, 15 Jan 2023 00:31:32 GMT
Date: Sat, 14 Jan 2023 19:47:30 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6sE9ez6CXibxiIg8bOcQATfQ4JXS+VSl+RZCONhypRM4FW8Vsb4ZqCeXQz2U8RsGBPkIC07bHewto3PL+X34BQ==
x-amz-request-id: 91J7DNFCCXP49H03
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 18:55:03 GMT
age: 3147
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hashe55c85310e1eb863c9c2eb6b1335a0dd efb1d0963f84e51a4ce640003cdeba282cfe278a 10bf5f98080fb19ed540d7fed5bb0bc69ab70550b42f44911413b14fae351071
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150588
Date: Sat, 14 Jan 2023 19:47:30 GMT
Etag: "63c2b00e-1d7"
Expires: Mon, 16 Jan 2023 13:37:19 GMT
Last-Modified: Sat, 14 Jan 2023 13:37:18 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: seh-QF303b_hzLg6fuXj6oYVcirIUd4MigRZE37_QvTPnI9176EI_Q==
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 19:17:25 GMT
age: 1806
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| find-me-fuck.com/res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN | 3.66.82.41 | 302 Found | 350 B |
URL HTTP/2find-me-fuck.com/res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN IP3.66.82.41:0
File typeHTML document, ASCII text, with very long lines (350), with no line terminators Hash67f0003da95624d577f7653bcd071724 f8a6d804d1064054ca52cfc703b8f2c8f547ed92 3fc0fbd5baebc9966029c9362a532698f7de479aa586a8b306826e9e952315be
GET /res_route/fback?s1=&s2=&s3=&s4=&s5=&s6=&s7=&s8=&tds_ac_id=&tds_cid=&tds_campaign=&utm_source=&utm_campaign=&utm_term=&tds_layer=ATE&tds_reason_code=TECH_UNKNOWN_CAMPAIGN HTTP/1.1
Host: find-me-fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 14 Jan 2023 19:47:31 GMT
content-type: text/html; charset=utf-8
content-length: 350
location: https://www.dirtytinder.club/c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source=
server: nginx
x-powered-by: Express
access-control-allow-origin: *
vary: Accept, Accept-Encoding
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc01ec61f7ca77158f474b3ab519c12fa fc82ae0fcd73a83a980b75709a08e65239894e4a f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3189
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 19:47:31 GMT
Last-Modified: Sat, 14 Jan 2023 18:54:22 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hashdde1b2955bf274086ecd1b808e50f7d2 30ac67e3cade14b76b0370a534600622c42224e0 2dee88569d3b75bf349d7cb24fbd9746a7b616f7421fd72a03c1f94a8af3632d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109507
Date: Sat, 14 Jan 2023 19:47:31 GMT
Etag: "63c20f96-1d7"
Expires: Mon, 16 Jan 2023 02:12:38 GMT
Last-Modified: Sat, 14 Jan 2023 02:12:38 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PaxrxBftAupAoOzQc2mbqAWtMmBcuDKQx39BIcGVHsl3iyYoXpodKA==
|
|
| push.services.mozilla.com/ | 52.43.253.52 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.43.253.52:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CyD/AKxC2vPnC/o0bzfz+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: auE7KDKpk4nIwu/hv6xV09+gNxE=
|
|
| www.dirtytinder.club/c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source= | 52.59.21.75 | 302 Found | 316 B |
URL HTTP/2www.dirtytinder.club/c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source= IP52.59.21.75:0
File typeHTML document, ASCII text, with very long lines (314) Hash394ee1d339966b6f80b2991e8676530b 963960a697b75b8e3a170fe10ca6e2b448f2b303 2d350086c92fc77de69e362321c748af1ed4101fc13ea07675c518a9903d994b
GET /c/8d2358ea43d0439d?s1=36_all_ng&s2=TECH_UNKNOWN_CAMPAIGN&s3=&s4=&s5=&s6=&s7=&s8=&utm_source= HTTP/1.1
Host: www.dirtytinder.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 14 Jan 2023 19:47:31 GMT
content-type: text/html; charset=utf-8
content-length: 316
location: https://www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_tmp
server: nginx
set-cookie: unique_id=63c306d3000a4199; Path=/; Expires=Wed, 15 Mar 2023 19:47:31 GMT; Secure; SameSite=None
unique_id2=63c306d3000a4801; Path=/; Expires=Fri, 14 Apr 2023 19:47:31 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sat, 14 Jan 2023 19:47:31 GMT; Secure; SameSite=None
tid=tcvdd63c306d3000494c0; Path=/; Expires=Sun, 19 Dec 2027 19:47:31 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hash4be43f4c2fd8e3b533ef9e47bfa58290 f1ae0fcd22d9c5df47edb4beb8183bd9be5e3e1d b61c7d4f2763dfc83ea80e95cf21edc94d16f7314a0b16e51d4488651a650c62
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 19:47:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 12 Jan 2023 11:00:35 GMT
Expires: Thu, 19 Jan 2023 11:00:34 GMT
Etag: "f1ae0fcd22d9c5df47edb4beb8183bd9be5e3e1d"
Cache-Control: max-age=399781,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7898e24dada1b4f9-OSL
|
|
| www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_tmp | 52.19.101.114 | 200 OK | 295 B |
URL HTTP/2www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_tmp IP52.19.101.114:0
File typeHTML document, ASCII text, with no line terminators Hash50db6ee4908be7f93d8de08ef975f77b b5fcedde0ae6019cdadca9ed0a0679cc9022baaf 1405a21694b5599803767d64eea493485654dafefd413b2010da03460c986727
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_tmp HTTP/1.1
Host: www.redir2fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:32 GMT
content-type: text/html; charset=utf-8
content-length: 295
X-Firefox-Spdy: h2
|
|
| www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_final | 52.19.101.114 | 200 OK | 161 B |
URL HTTP/2www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_final IP52.19.101.114:0
File typeHTML document, ASCII text, with no line terminators Hash1d0c1d3ba772e1fea007955d7caaea32 26e7b788ef4c1e8530538ab7eb6f109759b796ce 9f7d51f41d70acceeec24176a0a1558e1727da24537715642ece59319359a0e2
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_final HTTP/1.1
Host: www.redir2fuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.redir2fuck.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cucmVkaXIyZnVjay5jb20=&data=aHR0cHM6Ly9yZ2pnd2UubWV0bGN1bG91c2RhdGVzLm5ldC9jL2UyOTA1ZjU1ZWMzYTU2OGI/czE9MTM4MDg5JnMyPTEzMTA5MDYmczM9JnM1PSZjbGlja19pZD10Y3ZkZDYzYzMwNmQzMDAwNDk0YzAmajE9MSZqOT0x&action=action_tmp
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:32 GMT
content-type: text/html; charset=utf-8
content-length: 161
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18160
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 19:47:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18160
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 19:47:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18160
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 19:47:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash256e39696ba05f2324bbc49b2a396115 e1cf8b15abd0a20eb1218be517c03459514a59e0 d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18160
Expires: Sun, 15 Jan 2023 00:50:12 GMT
Date: Sat, 14 Jan 2023 19:47:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd24ea1f095f492934a1f1c63f5d8590c dade37148c9b9a941f93a8535d8ddc5de3952623 2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:36:45 GMT
age: 79847
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5a11691e9f6a07e1d8ae2485f1bbab26 11a0cc28e3a6575271c171384523ba89eb52049e 9b722cf609f3535ca57081bb78b631817db9da6f3b1f302fc3927b9f8f4bc163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B722CF609F3535CA57081BB78B631817DB9DA6F3B1F302FC3927B9F8F4BC163"
Last-Modified: Sat, 14 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 15 Jan 2023 01:47:32 GMT
Date: Sat, 14 Jan 2023 19:47:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2363dbe7bb6a459853d8d19cab50e70b ded76de1dd453e40dbf6eaa8607cf19fac7f71a4 f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 79111
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha23d61d610c7b55d943fcb2636a01b65 82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065 28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 05:58:29 GMT
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
age: 49743
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb1378f107c1996ade14a8fe7fd728072 f52d98d9a0d1d343a539689ea14acf99e148cf8c 4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:21:52 GMT
age: 55540
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg | 34.120.237.76 | 200 OK | 4.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7055d5db8f2f9c89dfab16c4fe3f11a5 29566fe8eb5c9d12b0584642dac170c93ba80b90 6510cf0eda1d062df3b81b2b797e9bfca73040cac874e80ae9b8ff70b0407302
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69cd0f59-3b24-4742-958c-e856dc02789f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 28db68a0-ab23-4bef-b415-54120d187f80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ0gWEF6IAMFT7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba3468-23b24e4a2c863aed25e0c81e;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:11:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lkGbybdV4gBs1HNNzdVIBzyA5Akcx2T4YZX9Q1kR847Q33pG8sJ67w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:15:41 GMT
age: 81111
etag: "29566fe8eb5c9d12b0584642dac170c93ba80b90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash64ba27a2f0a3bc61bd325f1fb317b755 c65c58476b66cbb6269ba1d8412d270a0a003ae3 5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 01:41:40 GMT
age: 65152
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/css/css2.css?1624025125 | 95.101.11.11 | 200 OK | 478 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/css/css2.css?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
Hash71422cc0c98c0f0d038113e2c0f4fc74 8cb475413b46c087e604adcbf6e0dcd7b3e4f1ae edd01a5eba971514bdb2bdac264929d7cc99b67d7b2d3999bb4f57c82a1a986b
GET /landings/212225/1624025125/css/css2.css?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: kKVKnarK9pUK4ak993AE77tIevesRhv1gGlINltmwmxzyQJTjIIrcV3qwx5EG2lrqgOVJCF0vRk=
x-amz-request-id: 4PF12H3M95YGVTV6
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "71422cc0c98c0f0d038113e2c0f4fc74"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 478
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/js/jquery.validate.min.js?1624025125 | 95.101.11.11 | 200 OK | 7.8 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/js/jquery.validate.min.js?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeUnicode text, UTF-8 text, with very long lines (24228) Hashf808399407c6ac496fe830d5deacb05f 151039ee8631ce8ff989c5cf795c2feba950a499 21e11160c5ba11e65a1c97b0306a9f5dec06c8fd3d4a7d69dd0a80e263577958
GET /landings/212225/1624025125/js/jquery.validate.min.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0nQ+5gDJLSFFtmd+bI6bXOXCX2Doc3hAXuSTNgMrabSvhcNNZi5Isq5kOgNM7P8zMrn+liz9kPE=
x-amz-request-id: XHR31XZ98WFCMZ1N
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "23d73c6bd6cbea8f06d0cc227896a827"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Length: 7815
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/js/trls.js?1624025125 | 95.101.11.11 | 200 OK | 13 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/js/trls.js?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
Hash7c49093e0da4cde7c10e6eaeb5db33e8 8335e795d1fa1d5a59aad88a9f23a8bb43a09986 95390457c7424017fadc461ca9ab9ad441f3fc2f96fb70e7b69ea333cf460a55
GET /landings/212225/1624025125/js/trls.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Z0BsTzIVc0VXsLmeYl+kE57rzg/z/N9ubwK1JxVJ7g+1bUYGplOUBvu345ixb+QpYuhurh3jwDE=
x-amz-request-id: 4PF6RKK40PSVZE64
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "1f2a63d62e50fb3ea9b5bdfd69c66411"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Length: 12875
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/css/main.css?1624025125 | 95.101.11.11 | 200 OK | 1.4 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/css/main.css?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeassembler source, ASCII text Hash8df101b94d92ec02934a35a76b709de6 d76437a536afe0430c9d6a765841de9eeb50a448 c8aff816800155d1460ec0dbce2c4ea158df479388e1f276e06514ab28d2bc2b
GET /landings/212225/1624025125/css/main.css?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ht7DprKpspY6O1pH/OCGQ2xvDVXRyqcmzjTFx5jSX+yPA5UKCEJLyQzd5z6+B/L2zhnLLecsR1E=
x-amz-request-id: N3TQ4W9QY4ZQ7FYD
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "e8ad0d5112ebc38ccffa906a88480571"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Length: 1438
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/js/script.js?1624025125 | 95.101.11.11 | 200 OK | 145 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/js/script.js?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeASCII text, with CRLF line terminators Hash7088a812e48fb5ed8602225eddbac48f 4ab069794875538586cdbb1a924333a037e630d1 ee31e979a2410b8968bbfa00dbc3a6f2fb870562da1ac4315054da1a6c14eba0
GET /landings/212225/1624025125/js/script.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: iqPZsHkDk2lhJ4giViCG/e8scA6JXh98Hh1VqwOJGP7BPFuC8BC3WZDdY6LPogzvWA+th7lK+VA=
x-amz-request-id: CEGQEFSDKR6H3R64
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "7088a812e48fb5ed8602225eddbac48f"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 145
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/css/css2.css | 95.101.11.11 | 200 OK | 478 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/css/css2.css IP95.101.11.11:0 ASN#20940 Akamai International B.V.
Hash71422cc0c98c0f0d038113e2c0f4fc74 8cb475413b46c087e604adcbf6e0dcd7b3e4f1ae edd01a5eba971514bdb2bdac264929d7cc99b67d7b2d3999bb4f57c82a1a986b
GET /landings/212225/1624025125/css/css2.css HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/212225/1624025125/css/main.css?1624025125
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: kKVKnarK9pUK4ak993AE77tIevesRhv1gGlINltmwmxzyQJTjIIrcV3qwx5EG2lrqgOVJCF0vRk=
x-amz-request-id: 4PF12H3M95YGVTV6
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "71422cc0c98c0f0d038113e2c0f4fc74"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 478
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/js/jquery-2.2.4.min.js?1624025125 | 95.101.11.11 | 200 OK | 36 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/js/jquery-2.2.4.min.js?1624025125 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (530), with CRLF line terminators Hash378507f30ab981ba7c512e07d134caaf dd17d6f540df83bab63921deda1b9462a5047c00 97d25af867afe95682e66a2d01f9c5e2f085df402403671e6ba885f49a1e03be
GET /landings/212225/1624025125/js/jquery-2.2.4.min.js?1624025125 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: JGYgflGPihOJzHEKsX3+0JsH4Q7HKFm2d8rN8X0blPq9U60RAbF4jQ1o+aP+WJDri9soErIjXaQ=
x-amz-request-id: CEGGNAJ7VGHH482H
Last-Modified: Fri, 18 Jun 2021 14:05:28 GMT
ETag: "61a04f254179208c931ebf40f4cfddf5"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Length: 36023
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/btn.png | 95.101.11.11 | 200 OK | 876 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/btn.png IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typePNG image data, 55 x 55, 8-bit colormap, non-interlaced\012- data Hashc90d93be7b9e2e55e87b9d58d3589721 951a4e7d04ec68e711196b3c9db68bce699f7f89 75941932fdfac80826ee9f5516cd038ed9233b6e377c8daf3440a90aa4b0ccc3
GET /landings/212225/1624025125/images/btn.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gPdQDRYB84XM34Gb9uDlBSPH9jt8Gc53dp6GfDdzuEh3kzBdwYBpjiKXWSVhVRJ+xZaQ7cPhud8=
x-amz-request-id: 762EK7CYRS34K0AN
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "c90d93be7b9e2e55e87b9d58d3589721"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 876
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/lightning.png | 95.101.11.11 | 200 OK | 259 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/lightning.png IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typePNG image data, 13 x 22, 8-bit colormap, non-interlaced\012- data Hash432a82abcebbf54d61969c7551feb4f3 15ed6893f8e3aa17da4c6412e369074ed9626b01 7eebda5ca1e762f5e0ad0a4857be6e60589c5b842357c9f92fde24eb91a16717
GET /landings/212225/1624025125/images/lightning.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4PimyU0Nf3DW+a+ZV+RYGM0dL3iJ3sysiKsPimzaCaObF7F4i/LpSIDrZY2MDXMlK3+c1N5JBo8=
x-amz-request-id: CEGMT2WB3XA445EY
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "432a82abcebbf54d61969c7551feb4f3"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 259
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| rgjgwe.metlculousdates.net/c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=&click_id=tcvdd63c306d3000494c0&j1=1&j9=1 | 63.32.216.166 | 200 OK | 6.5 kB |
URL HTTP/2rgjgwe.metlculousdates.net/c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=&click_id=tcvdd63c306d3000494c0&j1=1&j9=1 IP63.32.216.166:0
Hash11a0de293e5a785d1cf4d4a6fb88ea76 c69812299698b84d402f6fea14fbdbd13bc919e8 81a4baf963227a96d5061f6f2d6ca214bef3ada36c8d180ecb12936b7f148ea7
GET /c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=&click_id=tcvdd63c306d3000494c0&j1=1&j9=1 HTTP/1.1
Host: rgjgwe.metlculousdates.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.redir2fuck.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:32 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=63c2e3690007e712; Path=/; Expires=Wed, 15 Mar 2023 19:47:32 GMT; Secure; SameSite=None
unique_id2=63c306d400001c54; Path=/; Expires=Fri, 14 Apr 2023 19:47:32 GMT; Secure; SameSite=None
63c306d400001c54_c=1; Path=/; Expires=Fri, 14 Apr 2023 19:47:32 GMT; Secure; SameSite=None
ref_token=138089; Path=/; Expires=Mon, 13 Feb 2023 19:47:32 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sat, 14 Jan 2023 19:47:32 GMT; Secure; SameSite=None
63c306d400001c54_sl=[212225]; Path=/; Expires=Sat, 28 Jan 2023 19:47:32 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/camera.png | 95.101.11.11 | 200 OK | 521 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/camera.png IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typePNG image data, 29 x 22, 8-bit colormap, non-interlaced\012- data Hashe6fc25af3843556766acc03739200472 6aee49dbf2166cb5b0542fbe491d1b26da3f9e2c 8a5920605debc2378688b502b33f55753fc099c17639d56c652981fc0442e57f
GET /landings/212225/1624025125/images/camera.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: sE22DYQWmGJEKQXcyKTzt7+zTNpGlNJ8zhNWHLtAPxNJry4NB8iI8AhS1zzNy3wBUzpuaSx0JlE=
x-amz-request-id: CEGGCJF9VW70EA71
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "e6fc25af3843556766acc03739200472"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 521
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/preview.jpg | 95.101.11.11 | 200 OK | 41 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/preview.jpg IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=257, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=257], progressive, precision 8, 257x257, components 3\012- data Hashf14e845449946d94336832c6a288b753 16b73762fe2dd8ffccbf8da97504a3bd4c4c396f c7c713b35f729a8e3246f80f666d8ff01233745653afee65ff603ab2d86fe9b5
GET /landings/212225/1624025125/images/preview.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: B6EtNPuuFWiEqOn4VCnKf0nZQFwzmBkx7qoOXgbaps1XLwN4NYNXYYfwcZJiGXkdrR61MWaIWxY=
x-amz-request-id: CEGRDAKEVEDTMDWQ
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "f14e845449946d94336832c6a288b753"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 41399
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOlCnqEu92Fr1MmWUlvAw.ttf | 95.101.11.11 | 200 OK | 164 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOlCnqEu92Fr1MmWUlvAw.ttf IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeTrueType Font data, 18 tables, 1st "GDEF", 45068 names, language 0x7\012- data Size164 kB (163776 bytes) Hash37dcbd96ec8f38365e9c73162c7f2259 1f8c99ba2609ed8d017a70b1023e6b34c0e0f7fa c2c68d3912e74c516381ea2517313340b0d3636da39f85758ee9931c3e43a96e
GET /landings/212225/1624025125/images/KFOlCnqEu92Fr1MmWUlvAw.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.metlculousdates.net
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rs4ebly94Fls1d6T96MuWLdE6lKnq8pj8rQGJEEUZnE2cO+u494o0iCNPfg7W2XrXCxW+/mBHFc=
x-amz-request-id: ZZFA6521JTGWKT56
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "74bc6165dc68714ccaa88f5c64656b1c"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 131008
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf | 95.101.11.11 | 206 Partial Content | 116 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf IP95.101.11.11:0 ASN#20940 Akamai International B.V.
Size116 kB (116260 bytes) Hash64b81354ef201ad6077584ec15c286f4 52a1a47cb902175d249d49c75d6622bf111d1b68 00c6ae281c0cf6d67764df64ac591b9a0a587a99a0e8423fc6a3d5eef2681f4f
GET /landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.metlculousdates.net
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Range: bytes=15656-
If-Range: "0d984acaec916c225c012f27d0c56a91"
HTTP/1.1 206 Partial Content
x-amz-id-2: m21RDkldsJHpU/clW3VYNRqR7nsbgUzbudO5X3xkOpzXu2nYCm8bliDY1sIuAkPcOaC4H6mDWX4=
x-amz-request-id: ZZF18JP7ZC1WV7WQ
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Range: bytes 15656-131915/131916
Content-Length: 116260
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf | 95.101.11.11 | 200 OK | 23 kB |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf IP95.101.11.11:0 ASN#20940 Akamai International B.V.
File typeTrueType Font data, 18 tables, 1st "GDEF"\012- data Hash273af18809137fb4f66b0bff514514be ae1c3727c4bbb0e4eacf2966bedad6ec6c3baea2 42b8bf1081f0ef3e6ead35fa09588ef660f0a3f85ce0d5fc66727881c11e6757
GET /landings/212225/1624025125/images/KFOmCnqEu92Fr1Me5Q.ttf HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rgjgwe.metlculousdates.net
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m21RDkldsJHpU/clW3VYNRqR7nsbgUzbudO5X3xkOpzXu2nYCm8bliDY1sIuAkPcOaC4H6mDWX4=
x-amz-request-id: ZZF18JP7ZC1WV7WQ
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "0d984acaec916c225c012f27d0c56a91"
Accept-Ranges: bytes
Content-Type: application/x-font-ttf
Server: AmazonS3
Content-Length: 131916
Date: Sat, 14 Jan 2023 19:47:33 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdf489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 19:47:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash6fc52c452b4176dabdd1a319c5e3fa51 e00b78bd1c6b5d71f2987fd9cdc8975804b668ae 224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 19:47:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-app.js | 142.250.74.35 | 200 OK | 8.6 kB |
URL HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP142.250.74.35:0
File typeASCII text, with very long lines (25088) Hash73069e532b7039778d3a7128c997c61a c523bbf1ac7f4e612c8ade75434c42fbca885adc b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 21:48:10 GMT
expires: Fri, 12 Jan 2024 21:48:10 GMT
cache-control: public, max-age=31536000
age: 165563
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js | 142.250.74.35 | 200 OK | 10 kB |
URL HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP142.250.74.35:0
File typeASCII text, with very long lines (35547) Hashfa9987a23f5a9d865766e952511baa30 f2e620b99ee61a01671ba6a9e22ca75d58a1b52d 655daa1e20bf3aff16bc8462339dfea48c7ea5d3dd3505937015af3586d15fb7
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 10:16:38 GMT
expires: Thu, 11 Jan 2024 10:16:38 GMT
cache-control: public, max-age=31536000
age: 293455
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdf489559868985b8815baa1cfaaff191 cb804ae84a7d8c2b6580c97caa484cfb515c1435 ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 19:47:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn-dimi.akamaized.net/landings/212225/1624025125/images/bg.mp4 | 95.101.11.11 | 206 Partial Content | 0 B |
URL HTTP/1.1cdn-dimi.akamaized.net/landings/212225/1624025125/images/bg.mp4 IP95.101.11.11:0 ASN#20940 Akamai International B.V.
GET /landings/212225/1624025125/images/bg.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
x-amz-id-2: Sdx+HOjI7FuB3ku4ZRhrQ+3Bf6d0ILkwYzwDU1hQLRC4bibDf0k3zSxBF9LK4QpuXgIQ/jASlp4=
x-amz-request-id: 6H3F08S7K5DYNVX1
Last-Modified: Fri, 18 Jun 2021 14:05:27 GMT
ETag: "cc4714e8b4e4c5fec9b05bafaeb508d5"
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Sat, 14 Jan 2023 19:47:33 GMT
Content-Range: bytes 0-3823843/3823844
Content-Length: 3823844
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
|
|
| rgjgwe.metlculousdates.net/js/service-worker.js | 63.32.216.166 | 200 OK | 0 B |
URL HTTP/2rgjgwe.metlculousdates.net/js/service-worker.js IP63.32.216.166:0
GET /js/service-worker.js HTTP/1.1
Host: rgjgwe.metlculousdates.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: unique_id=63c2e3690007e712; unique_id2=63c306d400001c54; 63c306d400001c54_c=1; ref_token=138089; 63c306d400001c54_sl=[212225]
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:33 GMT
content-type: application/javascript
expires: Sat, 21 Jan 2023 19:47:33 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| rgjgwe.metlculousdates.net/js/pushjs/1.0.0/subscriber.js | 63.32.216.166 | 200 OK | 0 B |
URL HTTP/2rgjgwe.metlculousdates.net/js/pushjs/1.0.0/subscriber.js IP63.32.216.166:0
GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: rgjgwe.metlculousdates.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgjgwe.metlculousdates.net/c/e2905f55ec3a568b?s1=138089&s2=1310906&s3=&s5=backuser&click_id=tcvdd63c306d3000494c0&iexpp=1&j1=1&j9=1
Cookie: unique_id=63c2e3690007e712; unique_id2=63c306d400001c54; 63c306d400001c54_c=1; ref_token=138089; 63c306d400001c54_sl=[212225]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 19:47:33 GMT
content-type: application/javascript
expires: Sat, 21 Jan 2023 19:47:33 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|