funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755
104.21.83.86 967 B URL funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755
IP 104.21.83.86:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b8d6fd4440110dcf20b428258406dab6
7ae64cd7d96077cee81900e03e7ec6a1dc0a15cb
50fad6f08f54a7db303a0746ea2c486400cb9ba04fddca873e14252805c8ef8f
GET /nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755 HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 17 Apr 2023 11:16:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: trbarid=6016198475463338627;expires=Wed, 16 Apr 2025 11:16:31 GMT;secure;HttpOnly;SameSite=None;path=/;Domain=funkydaters.com
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cv%2FBVQjULnzbDxRSueDr9lxE5yKp7GN1n9IliGnBXJcfVtxwjs6iFr8AGNZpNHuimRAr8%2FsXs3QaBaWbGqPHxd3mwEGooDCaek5wKIWszmjEYw9PhfjJDaBu0WAe1e6Hgsg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b9441a3df860b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
funkydaters.com/static/js/build/bd.js
104.21.83.86 3.6 kB URL funkydaters.com/static/js/build/bd.js
IP 104.21.83.86:0
File type ASCII text, with very long lines (8033)
Hash 896fa747a8832e6a6ac72bbbcfc917f6
67dc40632c900a9f84280f0898b308b8a6b3e3a5
6e8a3da2d10de2291c78a9b5c4924383914596d719f5a0390f8a4e38a78d9c2b
Analyzer Verdict Alert fortinet Phishing
GET /static/js/build/bd.js HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 17 Apr 2023 11:16:32 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7b9441a488630b39-OSL
Age: 152209
ETag: W/"static/js/build/bd.3ad9d77bdd.js"
Vary: Accept-Encoding
CF-Cache-Status: HIT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Tf79M7wYSuE79g0znPcg9A4x%2FFtrSvqUIe8ldXqb0vLE9LjwZaFNrFLWwKq%2FW67NlC%2BK8XPrToX6KJMI%2Frf3kyX8785v0OC5aIO7bhzNGiXdPoqz7TMgUcf5jHOB2aRhGs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
funkydaters.com/favicon.ico
104.21.83.86 47 B URL funkydaters.com/favicon.ico
IP 104.21.83.86:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2f3ca1d38e8b18ef00c4a0eff0889cfc
2f28ed1ccf7c08cf22491757fe20385249db162e
af9dbf02c85319fda5ed6e97828a8328ce87a4a11e2a95d506654bf7dee244f4
GET /favicon.ico HTTP/1.1
Host: funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 17 Apr 2023 11:16:32 GMT
Content-Type: image/gif
Content-Length: 47
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U7BApKYs%2FPzgDIkJxmzOjU%2FsDvSo82JhCyCwJ2%2BJXtUU%2BOkcTcvQf%2BDrJZlxG8yQtamC7yfGDn1yAhncIjwAmYNJ4CNRkkucpHOzaz1mf7jcdB2qsuFVe3FLS5KkZsSZlEw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b9441a599af0b39-OSL
alt-svc: h2=":443"; ma=60
click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
172.67.155.223302 Found 0 B URL User Request GET HTTP/2 click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
IP 172.67.155.223:443
Certificate IssuerLet's Encrypt
Subject*.click2be.com
FingerprintE1:B9:2B:91:D7:30:89:2B:A1:8C:6E:A4:99:79:3C:75:97:F7:37:41
ValidityWed, 08 Mar 2023 15:01:41 GMT - Tue, 06 Jun 2023 15:01:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL= HTTP/1.1
Host: click2be.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://funkydaters.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 17 Apr 2023 11:16:33 GMT
content-length: 0
location: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: 3d3668c9-eba5-43ab-966f-e930046a5690-v4=8xADUALCfxmD5G2XpqvG9WTZ8NINSJ0hrtLe_yMQrvg; Max-Age=86400; Expires=Tue, 18-Apr-2023 11:16:33 GMT; Domain=click2be.com; Path=/; HttpOnly
cep-v4=wGi3aQ8Czbxxd1ukLsD_Uzbjd7fngSEln8ChviAI1VC-BIS1WpFgnSTBXps_4daj-GuBPvOYvbEInZnp7yhZ8oOlLPz3Kk6HTMGua04aitXs85tglBAjyVQUbgd_E9r0JZnN4NSIEsSz96wXAemI57JWNTYXUGVybrGIaOV77B1_ijwNk6bZPKP9IWS_ybsU-tyPXUp-J29eXHs587mW4ahlHV95Cuz8VEESB8s368qGlktlt-Z35Nwa0KGMLWRG0Gi8i0xeoGAAiwuDTfL12xTEjnsgrBzvC1U7uPnDN5442htLu7u-2zoLPMMeLsCHWJJKzv1MWi0yB0rOZslQXSCff4ryMG4KxmH9Xqlkr0I5GwmtubRJui01yhXovHO4iB8-oeG8o_6VGYHuLt5nsWBiJsGeUljA8NBmhLvXTv9oeUqLkcDx10B94o-Q7FSKu3SGHY-ZX0G9rpTlbtwbdw; Max-Age=86400; Expires=Tue, 18-Apr-2023 11:16:33 GMT; Domain=click2be.com; Path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5NID7nQ%2FlzUzpsI679k91VHOpFC7g6xbY2tM1ywOi%2BHjpgOAbSaMRqmewQ3MAqKIoXBEAnWvy059F%2FSMifZwFbHpbYGtNJSp4R49czio8HBAsL4EdIvnDK%2Fw2A2xgxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9441aa0c59b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/images/1.webp
104.21.22.239200 OK 9.9 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/1.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash f9667baeae293f7de7ed52f02883eacc
c72fd31890c8d837e34b30062a3c1b1a07ed098f
2a8229de9288671f333b84dff718a7c56ffa2fbd4aa75877ada0df80c7ffad0b
GET /10sec/1-970069/images/1.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 9916
last-modified: Fri, 21 Jan 2022 10:33:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RAQdfWcQiKtRbBmyg8TNEWnMJePYVS9%2FlJGzIb2vkORKY4Dr%2FI3gmGVVzJRpuSBXj%2BNPnjKn0FsBMyQilJoVEbmAA3aPAxuLrOJuMGak7NpJE3x6P3jMcKBCm%2F9X6AtjL6Ft"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a6b0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/2.webp
104.21.22.239200 OK 6.0 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/2.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 61de9e4481929fb6a2fac8446134f4da
c2319f2f4936ae8e9ebd4579612d247a68952ee9
35b1f21d88111c721ff353f0bb92c83fac39a733f43edbd152e32aabc7e7cd0f
GET /10sec/1-970069/images/2.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 6016
last-modified: Fri, 21 Jan 2022 10:33:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7iIf%2B9FSyg4ar%2FNLR7CubUVycu6vCxpWuvVSyV9FJGG1c5iFGdc0nPRDE6cnaVeOUQsVX9x2RmsmCM0bzg4F%2BAXgJo2AbxYAqb050KwZMDlHWUBIlF8w74j2c%2Fl%2B8R77%2FZtT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a6e0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/6.webp
104.21.22.239200 OK 6.2 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/6.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9c62d6594ceab47841fa97bf53233b9d
07e9eeaca011d3ea19a9009aeb5bfa3aeadf578e
74b36889567c3b18d25161af62d740696987cc6d33cbc6c5941f923963866753
GET /10sec/1-970069/images/6.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 6202
last-modified: Fri, 21 Jan 2022 10:33:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=POv3sY9e8Zy2BIYXRgAmkaMdbRKx8DLN0jizkulFV1uhqYhEkO92SLduXhXt2VmHz%2FKEhhxx7HTv0i2ssoMCbmfCWOuYhhSWjIFOS3B%2BcMgEjX6TJxh29k%2FggCSmd1%2FcKqYN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a760b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/5.webp
104.21.22.239200 OK 7.5 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/5.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8a43c2df6b219864d406968e5b650997
568293170f9dd1d56a9593235a99e69415f6ba69
02194bb79787252a5ae0d0dd0fb9b1447abdce5de8c123a01859ee27022c79b2
GET /10sec/1-970069/images/5.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 7500
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ATw6JRPoLbbkKorZdt54CH8%2Fwy%2BH%2FcEMUFjBL2A1LUPCON6SugCy%2Fl6DuDgzFjAqCr0XmgLgXe2qxNqtImZhWqPH6MilAOsgFKoj4MS7mt2ZF6AaCzKfzTlYKmufXAJU3pn1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a740b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/3.webp
104.21.22.239200 OK 7.8 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/3.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9c9960a8e11627e1fe63aa8e4c8104c4
8734fe85e15279e4d6a61bf1feea8e43ef14fea7
da2cea446788dbe33ca217928eab21bd5af70969ee29eea4e260690ed8abf21d
GET /10sec/1-970069/images/3.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 7798
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yr8CkCmfnHTkKa7LmGj23gmG%2FRY0ZWBy3RuxCb0xLch%2B86n9AFmPqRKIXSFXj%2Bykx0IFcuUmbgWjhhjsrEnxtEYLP4WU%2FFiopkoG2%2BNpNrqHoFaGOhavT7mBi9DtiyYfbiFF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a6f0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/images/4.webp
104.21.22.239200 OK 9.4 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/images/4.webp
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 54c584fb147986b9fc4c06c6c9982eaf
b9f5eb3ecdc1dd0267add3e58581f842e7abc3ce
b680db4a34a67b7f4c66800ac10a2a988f9d4b81891e223b7d70de729e1a58f0
GET /10sec/1-970069/images/4.webp HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: image/webp
content-length: 9404
last-modified: Fri, 21 Jan 2022 10:33:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3454118
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QfL5JiTlD%2F0rv3Y3JirYiESNITBXc5XrebLU80UeQ1FbFXKMan1X3xl3AMyESGfXfoZfsg5%2FldfRtw%2BPWPfMtAFIW%2B%2FCLOdNkWNsRW1o9xcEwIY7%2FhKJ1NtntQfm1fNuDAj%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a720b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
static.production.almightypush.com/mng/subs_window.css?ver=1654683980
54.230.111.86200 OK 6.9 kB URL GET HTTP/2 static.production.almightypush.com/mng/subs_window.css?ver=1654683980
IP 54.230.111.86:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash bd7dbae15f904a4e1213439ebfefddbe
9f7a33b3d6e7965d8b99f0ff56cbf2e2ebb8f78e
30c08f3bb42d9a16155c65fbc952430048e4a84be70b98cb989b2dc977b49f8a
GET /mng/subs_window.css?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 6945
date: Sun, 16 Apr 2023 20:34:39 GMT
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
etag: "bd7dbae15f904a4e1213439ebfefddbe"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AVPlF88G7sAjIX8YgiHYnHhkUS7SsEy9CKFFkw-ZcRYWaX390Ql7Qg==
age: 52915
X-Firefox-Spdy: h2
static.production.almightypush.com/mng/subs_window.js?ver=1654683980
54.230.111.86200 OK 20 kB URL GET HTTP/2 static.production.almightypush.com/mng/subs_window.js?ver=1654683980
IP 54.230.111.86:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash ae593f4be1dd1f0710123918b49c4933
66fbe30bb873e0a47d3d72e737d68aa4b6916c26
fdf9ff3f74dcf11d0fa456dcd53cb21550f67f0cfdc11dc29bef595f07b56206
GET /mng/subs_window.js?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 19491
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 17 Apr 2023 01:22:16 GMT
etag: "ae593f4be1dd1f0710123918b49c4933"
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gKKxZ_RpiIGuhP23RlWzjKJtX0XaY6tBYuFkRLy0LNvOUYA_Yv5Rng==
age: 35658
X-Firefox-Spdy: h2
static.production.almightypush.com/mng/channels/init.min.js?ver=1654683980
54.230.111.86200 OK 23 kB URL GET HTTP/2 static.production.almightypush.com/mng/channels/init.min.js?ver=1654683980
IP 54.230.111.86:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash 3b6653c5e8ba364d3a55401890bfcd78
ee999f16f02d41b93d1db2bf3a489fab1034e67a
a598ef0100e73e2d81969e0a59374e915ccfe7c312603b4b1375bbd0e75498d5
GET /mng/channels/init.min.js?ver=1654683980 HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 22787
date: Mon, 17 Apr 2023 01:54:57 GMT
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
etag: "3b6653c5e8ba364d3a55401890bfcd78"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DMDJABchdpn4d_i17l9vH02u9e1pnCY1HelS9TkMRp9-vraKssTkFw==
age: 33697
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7d946ecd85a4e6cb0baef36c5f5f4828
52b475dbe3db533416db4c872d570da32071b20d
d7d0c1b6ac1561730aa74001ce93c6a4a89326698ee5a005845468bf06c465d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 11:16:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.production.almightypush.com/mng/channels/sw.min.js
54.230.111.86 6.3 kB URL static.production.almightypush.com/mng/channels/sw.min.js
IP 54.230.111.86:0
Certificate IssuerAmazon
Subject*.production.almightypush.com
Fingerprint10:12:C9:DC:4E:2D:A7:43:A9:C1:09:3C:87:80:2E:6F:D7:E0:63:41
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 03 Feb 2024 23:59:59 GMT
Hash 03b71607d0eb65df0c65a3d5fece3706
871375fc1daff080ef7657a83058cbbe674d62e9
1a59bbb1f7d210cbcad77e4fa12797ac225f574c2d65b72ed3695719f6e84caf
GET /mng/channels/sw.min.js HTTP/1.1
Host: static.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6277
last-modified: Wed, 18 Jan 2023 12:37:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Mon, 17 Apr 2023 10:07:29 GMT
etag: "03b71607d0eb65df0c65a3d5fece3706"
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4PZP9-CFt2qBNsFzY_gU4ztT4BcYnNcTr_VoPL_i5nXiGDLNEwTbGA==
age: 13516
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7d946ecd85a4e6cb0baef36c5f5f4828
52b475dbe3db533416db4c872d570da32071b20d
d7d0c1b6ac1561730aa74001ce93c6a4a89326698ee5a005845468bf06c465d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 11:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:100,300,400,700,900,300italic,400italic
142.250.74.138200 OK 484 B URL GET HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,400,700,900,300italic,400italic
IP 142.250.74.138:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint28:74:DC:A1:79:64:AB:97:A4:EA:AB:80:90:A6:E2:B9:D4:16:79:64
ValidityTue, 28 Mar 2023 16:54:33 GMT - Tue, 20 Jun 2023 16:54:32 GMT
Hash 5f97548153431c43256143814d00860e
e1252d70f3ee5dfaee5a412849c85c95283aa9b7
52e02c83da1fb6a72d340d0752c8bf5a05e8be208fab7434c708fa8c7525b95c
GET /css?family=Lato:100,300,400,700,900,300italic,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 17 Apr 2023 11:16:34 GMT
date: Mon, 17 Apr 2023 11:16:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4862c45df9dee1fd8e7cdcfee5995fcc
9c1a79c2a7aad86e625896edd512948df0891e2c
29900d322073fcc6803f7db55a05ff291bb14a6aa80c4cec4cd6abc7616570e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 11:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bestday2love.com/worker.js
104.21.22.239 24 kB URL bestday2love.com/worker.js
IP 104.21.22.239:0
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d3ad8cbbdf5952c9d47fcfe96d8deb84
0aec1f69a8143f65f3ae7e4a2646916b2d2ac7ea
e6aabc1c05e8ca13ad3c35094f9168ad247123ebb5746e3595eab6cc15988491
GET /worker.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:34 GMT
content-type: application/javascript
last-modified: Fri, 21 Jan 2022 10:34:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 860274
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NZLlwjIKliQR2UDquI53jpMJIT%2FVWKYIGcumT2cLckHudAJA4%2BsTt6UuoYDsM8Z%2BJY1OsQqiWbPlG%2F5o9%2Bc2YjWF1ujxXVhISbD6fs109Nc33eltCLKp74Uw9Lx2j8fYpxYp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441b29a1c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.r2m01.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 5ad5d5e11906f9428f42ff377d454e7f
77852b3b3f7b4bcd56512057e946e00015c82efe
016623ae8c4aaf022f92c0fa0d6b8ac7178067cb33033608601e64d77d2066ca
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 17 Apr 2023 11:16:34 GMT
Last-Modified: Mon, 17 Apr 2023 09:45:52 GMT
Server: ECAcc (nya/78C0)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z9GjNiHFeDCvn1rkzWov4weUJzMZI0Kwl-zCKyZjHfm11OF6nIYUXA==
Age: 5442
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 4862c45df9dee1fd8e7cdcfee5995fcc
9c1a79c2a7aad86e625896edd512948df0891e2c
29900d322073fcc6803f7db55a05ff291bb14a6aa80c4cec4cd6abc7616570e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Apr 2023 11:16:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
143.204.48.16 471 B URL ocsp.r2m01.amazontrust.com/
IP 143.204.48.16:0
Hash 5ad5d5e11906f9428f42ff377d454e7f
77852b3b3f7b4bcd56512057e946e00015c82efe
016623ae8c4aaf022f92c0fa0d6b8ac7178067cb33033608601e64d77d2066ca
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118557
Date: Mon, 17 Apr 2023 11:16:34 GMT
Etag: "643c48a1-1d7"
Expires: Tue, 18 Apr 2023 20:12:31 GMT
Last-Modified: Sun, 16 Apr 2023 19:12:33 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MvbY6izCf_VjIpQUL3_lNstR3SjgD8g3POtTXg2BorDtmuHJjnotnA==
Age: 3598
manager.production.almightypush.com/api/v1/code-snippet/
18.221.56.52200 OK 0 B URL GET HTTP/2 manager.production.almightypush.com/api/v1/code-snippet/
IP 18.221.56.52:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subjectproduction.almightypush.com
Fingerprint13:28:AF:3C:76:11:67:4F:12:43:F8:6D:83:B6:EA:81:FC:BC:AC:D1
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/code-snippet/ HTTP/1.1
Host: manager.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: channel-token
Referer: https://bestday2love.com/
Origin: https://bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 17 Apr 2023 11:16:35 GMT
content-type: text/html; charset=utf-8
content-length: 0
server: gunicorn/19.9.0
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://bestday2love.com
access-control-allow-headers: accept, accept-encoding, authorization, content-type, origin, x-csrftoken, x-requested-with, X-Push-Channel-Id, Channel-Token
access-control-allow-methods: DELETE, GET, OPTIONS, PATCH, POST, PUT
access-control-max-age: 86400
x-content-type-options: nosniff
referrer-policy: same-origin
X-Firefox-Spdy: h2
manager.production.almightypush.com/api/v1/code-snippet/
18.221.56.52200 OK 1.2 kB URL GET HTTP/2 manager.production.almightypush.com/api/v1/code-snippet/
IP 18.221.56.52:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerAmazon
Subjectproduction.almightypush.com
Fingerprint13:28:AF:3C:76:11:67:4F:12:43:F8:6D:83:B6:EA:81:FC:BC:AC:D1
ValidityFri, 10 Feb 2023 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (1177), with no line terminators
Hash 0fbbba7865b1ad88759aefe8ddead908
40c61a42d676553ab6000c5d519ab70fc28206bc
9ff0e0debff656aac923cb6a168fd346dff303cd372bfd359359ebf8e4414c16
GET /api/v1/code-snippet/ HTTP/1.1
Host: manager.production.almightypush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Channel-Token: ZDgwZGNmZGI1NmY1ZWI4NGZhZjJkMGJkNjEzOTNjYmQ9MTA2Njk9Lw==
Origin: https://bestday2love.com
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 17 Apr 2023 11:16:35 GMT
content-type: application/json
content-length: 1177
server: gunicorn/19.9.0
vary: Accept, Origin
allow: GET, POST, HEAD, OPTIONS
x-frame-options: DENY
access-control-allow-credentials: true
access-control-allow-origin: https://bestday2love.com
x-content-type-options: nosniff
referrer-policy: same-origin
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/css/style.css
104.21.22.239200 OK 13 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/css/style.css
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
Hash b72202db472fdd71a66eb495993a0daf
a32712539d07629fc05b86d196deb547eaa09b58
65ed96a20f05f0f7af76d1a0f89f445b0e9db5304756e6660d60e497c791070c
GET /10sec/1-970069/css/style.css HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: text/css
last-modified: Mon, 28 Mar 2022 13:19:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 860276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CgVcCfI6bX1WllnztFKrk19VB1dMwADo0EK0bEkCYd3uQR0b%2BAMrJGTs7ZbiHHiE46lYZbYLh%2BJbdkTNJX0dlj0WwNat%2Fa6lvM93i0rLmoEtrKnh1Yl9Nh6Jicl0e1TM1T70"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac4a540b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
alexatracker.com/jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid=
172.67.204.112200 OK 0 B URL GET HTTP/2 alexatracker.com/jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid=
IP 172.67.204.112:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subject*.alexatracker.com
FingerprintE0:17:31:90:3F:1A:8C:10:84:2E:87:0A:38:0D:1E:4E:AD:10:B9:4A
ValiditySat, 01 Apr 2023 16:58:57 GMT - Fri, 30 Jun 2023 16:58:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jscode/JAIA.js?sub1=bestday2love.com&sub2=&sub3=&sub4=&sub5=&prid= HTTP/1.1
Host: alexatracker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 17 Apr 2023 11:16:34 GMT
content-type: application/json; charset=UTF-8
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: BYPASS
set-cookie: trbarid=ef54a8d1c8b0fe9147564d883f8c898dc53ba205ec6fb37b68400f72c869d8cca%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22trbarid%22%3Bi%3A1%3Bi%3A3538162101274880658%3B%7D; expires=Mon, 21-Apr-2025 11:16:34 GMT; Max-Age=63504000; path=/; secure; HttpOnly; SameSite=None
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0m%2BibQORbxZBZ%2FAmSQuYIwvI2LQjcRCB3MmDH4HgAs43VWlTIY%2FtdpM7%2BNMR2DCUQnr%2BrQYQYyeHAzTCNaH03700UL2eGU%2BSEE84Q7ecMfb4SbkaX3tR7hziUgrZcmoRWxxQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441b35b171c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
104.21.22.239200 OK 6.5 kB URL User Request GET HTTP/2 bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
IP 104.21.22.239:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6979), with no line terminators
Hash 90e999a1595ca09a146c334b00dbab42
1e951d84ef96e80c3acff3953b7dea907e2e45d3
f39cc6664ed8ad118e087d984cb00aa02b8fbf23559405eaeeb838aea9d3e7ab
GET /10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL= HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://funkydaters.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kJgwQuAdTGuCoNVBeNgl1L5GG8oJNeG0F3nW5EjUE%2F%2FltnzrEZG%2FvPIdXBjRqMnDyiQChdehCCLQqJiDKSL2HXZnaOQnFLnnDqOaGEqAp%2FGOuysg3zUF%2BmDkUllAMz3CD%2FTP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9441aa9f94b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www2.funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755&bdata=eyJkYXRhIjp7InBsYXRmb3JtIjoiTGludXggeDg2XzY0In0sImV4dHJhIjp7fSwiZXJyb3JzIjp7ImlmcmFtZSI6WyJjYW4ndCBhY2Nlc3MgcHJvcGVydHkgXCJhcHBlbmRDaGlsZFwiLCBkb2N1bWVudC5ib2R5IGlzIG51bGwiXSwiY2FudmFzX2NvbnRleHQiOlsiT2Zmc2NyZWVuQ2FudmFzLmdldENvbnRleHQ6ICdleHBlcmltZW50YWwtd2ViZ2wnICh2YWx1ZSBvZiBhcmd1bWVudCAxKSBpcyBub3QgYSB2YWxpZCB2YWx1ZSBmb3IgZW51bWVyYXRpb24gT2Zmc2NyZWVuUmVuZGVyaW5nQ29udGV4dElkLiIsIk9mZnNjcmVlbkNhbnZhcy5nZXRDb250ZXh0OiAnZXhwZXJpbWVudGFsLXdlYmdsMicgKHZhbHVlIG9mIGFyZ3VtZW50IDEpIGlzIG5vdCBhIHZhbGlkIHZhbHVlIGZvciBlbnVtZXJhdGlvbiBPZmZzY3JlZW5SZW5kZXJpbmdDb250ZXh0SWQuIiwiRmFpbGVkIHRvIGdldCBjYW52YXMgY29udGV4dCJdfSwiYm90U2NvcmUiOiIyNCJ9&bt=1681730191&bth=2663592360
172.67.218.62302 Found 6.5 kB URL User Request GET HTTP/2 www2.funkydaters.com/nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755&bdata=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&bt=1681730191&bth=2663592360
IP 172.67.218.62:443
Certificate IssuerGoogle Trust Services LLC
Subject*.funkydaters.com
FingerprintA5:D9:F6:EA:85:35:68:60:1B:14:51:E7:B5:AA:56:79:BD:E3:B4:BF
ValiditySun, 26 Mar 2023 01:40:09 GMT - Sat, 24 Jun 2023 01:40:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nAMA?prid=weoilc4kq0se8r2oibin1ej2&usid=1549_3965&tbsession=6016198475463338627&c=3833854755&bdata=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&bt=1681730191&bth=2663592360 HTTP/1.1
Host: www2.funkydaters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://funkydaters.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Mon, 17 Apr 2023 11:16:32 GMT
content-type: text/html; charset=UTF-8
location: https://click2be.com/3d3668c9-eba5-43ab-966f-e930046a5690?KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
set-cookie: trbarid=b560cfa1dcd9d505faea2f515aa4e742c1bda70874028cbf21c3852b1a61b4fda%3A2%3A%7Bi%3A0%3Bs%3A7%3A%22trbarid%22%3Bi%3A1%3Bs%3A19%3A%226016198475463338627%22%3B%7D; expires=Mon, 21-Apr-2025 11:16:32 GMT; Max-Age=63504000; path=/; secure; HttpOnly; SameSite=None
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OlhERxEI%2B6nmuCCVwK7d7TP9wQ618s7OmAzNNahZnur65tVVJpriHueZ5mPnWjG1D%2BwGt7taOEtH8RE%2BSKsQXX5lBtL9gXWkLInUFHeEeFgZU%2BpFmJAIUWJAe73TG1iL052ENBTu2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b9441a529a0b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bestday2love.com/10sec/1-970069/js/jquery.js
104.21.22.239200 OK 88 kB URL GET HTTP/3 bestday2love.com/10sec/1-970069/js/jquery.js
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (32042)
Hash 269aa59eab382fa3aaa418f21d22618f
5a8b67e7c78ea66096f3b404598d246c2aa8e617
5ced49ff396bdb0070d83727ff475375b53a843a8f446ee5041245ec81f6e98e
GET /10sec/1-970069/js/jquery.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: application/javascript
last-modified: Fri, 11 Mar 2022 11:49:29 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 860276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WDNly5Se5jOLLeaJadOO36K%2Fu6b4B%2BqpUs0RdYmGewhixIz%2BrwmDqFMq%2BR6Qz7pK073t8sb1FfoRAeRG9sir6GCYLWZQhx3me75ppnqGDqtO2tJxSNorXUQi44THVA%2FnwLX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac4a630b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
bestday2love.com/10sec/1-970069/js/backoffer.js
104.21.22.239200 OK 430 B URL GET HTTP/3 bestday2love.com/10sec/1-970069/js/backoffer.js
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (430), with no line terminators
Hash 6d5aa83d23ce0b9f72d3b87d000d8fae
034fb8768eb58ffc0b5849e2c162989741a6cbec
89266112a6c823b9c03dd5a32d8f1c5e9f4cbf4cf876b56c825781ea389d0800
GET /10sec/1-970069/js/backoffer.js HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 17 Apr 2023 11:16:33 GMT
content-type: application/javascript
last-modified: Fri, 21 Jan 2022 10:33:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 860276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ym%2BcxVljHKwfnAegjhhFhIc3IWpRnosokxfMY8jFzq049c0jthxJJAL1DmI4GIdDu%2FtcXW0wvs1EELU8xSufVnunZr%2B4%2BtVp%2Fmny5SPytvx3cA7O70iYBmyT5%2BF0hO3GZpgy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441ac5a780b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE8:8D:29:52:9C:44:66:28:BB:43:25:CE:11:45:BB:A1:5A:4E:44:11
ValidityTue, 28 Mar 2023 16:54:02 GMT - Tue, 20 Jun 2023 16:54:01 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bestday2love.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Apr 2023 22:01:04 GMT
expires: Sun, 14 Apr 2024 22:01:04 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
age: 134130
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zeniocloud.com/JAIA.js?sub1=bestday2love.com
0.0.0.0 0 B URL GET zeniocloud.com/JAIA.js?sub1=bestday2love.com
IP 0.0.0.0:0
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerLet's Encrypt
Subjectzeniocloud.com
FingerprintA7:BB:35:D8:B4:04:02:69:44:A1:3B:BC:BF:5B:2F:92:91:5F:44:3E
ValidityThu, 16 Mar 2023 18:01:34 GMT - Wed, 14 Jun 2023 18:01:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /JAIA.js?sub1=bestday2love.com HTTP/1.1
Host: zeniocloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bestday2love.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Mon, 17 Apr 2023 11:16:34 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
X-Firefox-Spdy: h2
bestday2love.com/favicon.ico
104.21.22.239404 Not Found 315 B URL GET HTTP/3 bestday2love.com/favicon.ico
IP 104.21.22.239:443
Requested by https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint21:05:E3:6A:54:99:2D:C0:CB:63:80:66:C9:6F:FA:C0:1A:D5:9C:B4
ValidityThu, 09 Mar 2023 00:00:00 GMT - Thu, 07 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (326), with no line terminators
Hash 97ef40509b73c101d6815511c3adf98d
a4242322497ea630ea72e26ba297a95a2bbe5ccd
322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /favicon.ico HTTP/1.1
Host: bestday2love.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bestday2love.com/10sec/1-970069/?cep=baxSfpNuouqhHtyJtJ9Cv5C1YIs7mIeCrlRUO_IoGreG3_ripiSAxpr8W7YxDfZC8MD1XPtTgKk5WgvRmyURqUamTTSFMApJ1lwaUYqiFhnBiA42jIZZpRPZuszMxyVIB0Ib0xUnM_Rj5FXusVg5CfSFnLsZfDv5ByUSMedS44msuHb5yc8hh8tDHMvgZgJFZNrBtpJFuIpXuv4bChaaj5TPjEP8VC3Fttw0MQS_9Joeo4kmB_r3UvxruGNMvR3h1c0b4bZ5uUCUHBwGFMDLNoxNZkANkMRKmOQDpJt5oVA7MvWwyhULPtzPMkTpkaX1D03CfJncxP2JolzAtVYylTFNr_2_CvG2ak9j3EmZdmEPGSjTErZvZ2GHPNyRZ-CKFO__YPF_QsLgd6mq5VETxPbKlZX2PZpeH45wuGLSviLNdzQCAWXwtH0I6ttz_11Em3DpAww248P0O1b5HqVfhA&lptoken=16c1813273d1196793e1&KEYWORD=b90772Q9KpA&LISTID=8566984930351193659&EMAIL=
Alt-Used: bestday2love.com
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 17 Apr 2023 11:16:34 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 3
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTZUvMtF%2FJZQ%2FLQ71krL4mLiMTRtR1IhwbKV3s%2FkD0oC7uMAgyZjsXOCYWpoAaOWAyBZ6LtNPf0mrv1QPSCBLCQk0YJv9SXu0WhacuZPkD7rn9Touvc5qnjbEHqYFdOJjfSn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b9441b59dc70b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400